Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libraw vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2017-6890
A boundary error within the "foveon_load_camf()" function (dcraw_foveon.c) when initializing a huffman table in LibRaw-demosaic-pack-GPL2 prior to 0.18.2 can be exploited to cause a stack-based buffer overflow.
Libraw Libraw-demosaic-pack-gpl2
8.8
CVSSv3
CVE-2018-5808
An error within the "find_green()" function (internal/dcraw_common.cpp) in LibRaw versions before 0.18.9 can be exploited to cause a stack-based buffer overflow and subsequently execute arbitrary code.
Libraw Libraw
Debian Debian Linux 8.0
7.5
CVSSv3
CVE-2018-5817
A type confusion error within the "unpacked_load_raw()" function within LibRaw versions before 0.19.1 (internal/dcraw_common.cpp) can be exploited to trigger an infinite loop.
Libraw Libraw
Debian Debian Linux 8.0
7.5
CVSSv3
CVE-2018-5818
An error within the "parse_rollei()" function (internal/dcraw_common.cpp) within LibRaw versions before 0.19.1 can be exploited to trigger an infinite loop.
Libraw Libraw
Debian Debian Linux 8.0
7.5
CVSSv3
CVE-2018-5819
An error within the "parse_sinar_ia()" function (internal/dcraw_common.cpp) within LibRaw versions before 0.19.1 can be exploited to exhaust available CPU resources.
Libraw Libraw
Debian Debian Linux 8.0
NA
CVE-2013-2126
Multiple double free vulnerabilities in the LibRaw::unpack function in libraw_cxx.cpp in LibRaw prior to 0.15.2 allow context-dependent malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via a malformed full-color (1) Foveon or (2...
Libraw Libraw 0.15.0
Libraw Libraw
Opensuse Opensuse 12.3
Canonical Ubuntu Linux 12.10
Opensuse Opensuse 12.2
Canonical Ubuntu Linux 13.04
Canonical Ubuntu Linux 12.04
8.8
CVSSv3
CVE-2018-5810
An error within the "rollei_load_raw()" function (internal/dcraw_common.cpp) in LibRaw versions before 0.18.9 can be exploited to cause a heap-based buffer overflow and subsequently cause a crash.
Libraw Libraw
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
6.5
CVSSv3
CVE-2018-5816
An integer overflow error within the "identify()" function (internal/dcraw_common.cpp) in LibRaw versions before 0.18.12 can be exploited to trigger a division by zero via specially crafted NOKIARAW file (Note: This vulnerability is caused due to an incomplete fix of CV...
Libraw Libraw
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
6.5
CVSSv3
CVE-2018-5811
An error within the "nikon_coolscan_load_raw()" function (internal/dcraw_common.cpp) in LibRaw versions before 0.18.9 can be exploited to cause an out-of-bounds read memory access and subsequently cause a crash.
Libraw Libraw
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
6.5
CVSSv3
CVE-2018-5815
An integer overflow error within the "parse_qt()" function (internal/dcraw_common.cpp) in LibRaw versions before 0.18.12 can be exploited to trigger an infinite loop via a specially crafted Apple QuickTime file.
Libraw Libraw
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 16.04
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
race condition
CVE-2024-4249
CVE-2024-4244
CVE-2023-20198
TCP
CVE-2022-48648
CVE-2022-48636
CVE-2024-21345
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »