Lucene search
Veracode Vulnerability DatabaseVERACODE:35151HistoryApr 17, 2022 - 11:46 p.m.
Denial Of Service (DoS)
2022-04-1723:46:58
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
9
dcraw
sid
vulnerability
denial of service
integer overflow
x3f input image
arbitrary code
executed
system
software
EPSS
0.001
Percentile
30.8%
dcraw:sid is vulnerable to denial of service.An integer overflow is possible when the victim runs dcraw with a maliciously crafted X3F input image, allowing arbitrary code to be executed in the victim’s system.
Related
cvelist
cvelist
CVE-2021-3624
2022-04-18 16:20:35
ubuntucve
ubuntucve
CVE-2021-3624
2022-04-18 00:00:00
debiancve
debiancve
CVE-2021-3624
2022-04-18 17:15:15
prion
prion
Integer overflow
2022-04-18 17:15:00
cve
cve
CVE-2021-3624
2022-04-18 17:15:15
redhatcve
redhatcve
CVE-2021-3624
2021-06-28 18:46:32
nessus
nessus
RHEL 9 : dcraw (Unpatched Vulnerability)
2024-06-03 00:00:00
RHEL 6 : dcraw (Unpatched Vulnerability)
2024-05-11 00:00:00
RHEL 7 : dcraw (Unpatched Vulnerability)
2024-05-11 00:00:00
nvd
nvd
CVE-2021-3624
2022-04-18 17:15:15
openvas
openvas
Mageia: Security Advisory (MGASA-2022-0160)
2022-05-09 00:00:00
openSUSE: Security Advisory for dcraw (SUSE-SU-2022:1277-1)
2022-04-21 00:00:00
mageia
mageia
Updated dcraw packages fix security vulnerability
2022-05-06 23:16:39
suse
suse
Security update for dcraw (moderate)
2022-04-20 00:00:00