Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libraw libraw 0.19.1 vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2018-20337
There is a stack-based buffer overflow in the parse_makernote function of dcraw_common.cpp in LibRaw 0.19.1. Crafted input will lead to a denial of service or possibly unspecified other impact.
Libraw Libraw 0.19.1
4.3
CVSSv2
CVE-2018-20363
LibRaw::raw2image in libraw_cxx.cpp in LibRaw 0.19.1 has a NULL pointer dereference.
Libraw Libraw
4.3
CVSSv2
CVE-2018-20364
LibRaw::copy_bayer in libraw_cxx.cpp in LibRaw 0.19.1 has a NULL pointer dereference.
Libraw Libraw
5
CVSSv2
CVE-2018-5818
An error within the "parse_rollei()" function (internal/dcraw_common.cpp) within LibRaw versions before 0.19.1 can be exploited to trigger an infinite loop.
Libraw Libraw
Debian Debian Linux 8.0
7.8
CVSSv2
CVE-2018-5819
An error within the "parse_sinar_ia()" function (internal/dcraw_common.cpp) within LibRaw versions before 0.19.1 can be exploited to exhaust available CPU resources.
Libraw Libraw
Debian Debian Linux 8.0
5
CVSSv2
CVE-2018-5817
A type confusion error within the "unpacked_load_raw()" function within LibRaw versions before 0.19.1 (internal/dcraw_common.cpp) can be exploited to trigger an infinite loop.
Libraw Libraw
Debian Debian Linux 8.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started