Lucene search
Veracode Vulnerability DatabaseVERACODE:25276HistoryMay 10, 2020 - 11:23 p.m.
Arbitrary Code Execution
2020-05-1023:23:44
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
19
EPSS
0.017
Percentile
87.9%
libraw is vulnerable to arbitrary code execution. The vulnerability exists as the phase_one_correct function in Libraw before 0.17.1 allows attackers to cause memory errors and possibly execute arbitrary code, related to memory object initialization.
Related
nessus
nessus
FreeBSD : libraw -- memory objects not properly initialized (6bc6eed2-9cca-11e5-8c2b-c335fa8985d7)
2015-12-08 00:00:00
openSUSE Security Update : libraw (openSUSE-2016-1264)
2016-11-07 00:00:00
openSUSE Security Update : libraw (openSUSE-2015-900)
2015-12-17 00:00:00
alpinelinux
alpinelinux
CVE-2015-8367
2020-01-14 16:15:11
cvelist
cvelist
CVE-2015-8367
2020-01-14 15:19:49
debiancve
debiancve
CVE-2015-8367
2020-01-14 16:15:11
freebsd
freebsd
libraw -- memory objects not properly initialized
2015-11-30 00:00:00
nvd
nvd
CVE-2015-8367
2020-01-14 16:15:11
osv
osv
CVE-2015-8367
2020-01-14 16:15:11
prion
prion
Information disclosure
2020-01-14 16:15:00
ubuntucve
ubuntucve
CVE-2015-8367
2015-12-02 00:00:00
cve
cve
CVE-2015-8367
2020-01-14 16:15:11
fedora
fedora
[SECURITY] Fedora 23 Update: LibRaw-0.16.2-3.fc23
2015-12-07 20:31:39
[SECURITY] Fedora 22 Update: LibRaw-0.16.2-3.fc22
2015-12-12 01:57:39
openvas
openvas
Mageia: Security Advisory (MGASA-2015-0469)
2015-12-11 00:00:00
Ubuntu: Security Advisory (USN-3492-1)
2017-11-23 00:00:00
mageia
mageia
Updated libraw packages fix security vulnerabilities
2015-12-10 23:57:35
gentoo
gentoo
LibRaw: Multiple vulnerabilities
2017-01-24 00:00:00
ubuntu
ubuntu
LibRaw vulnerabilities
2017-11-22 00:00:00