Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libraw vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2017-6890
A boundary error within the "foveon_load_camf()" function (dcraw_foveon.c) when initializing a huffman table in LibRaw-demosaic-pack-GPL2 prior to 0.18.2 can be exploited to cause a stack-based buffer overflow.
Libraw Libraw-demosaic-pack-gpl2
8.8
CVSSv3
CVE-2018-5808
An error within the "find_green()" function (internal/dcraw_common.cpp) in LibRaw versions before 0.18.9 can be exploited to cause a stack-based buffer overflow and subsequently execute arbitrary code.
Libraw Libraw
Debian Debian Linux 8.0
7.5
CVSSv3
CVE-2018-5817
A type confusion error within the "unpacked_load_raw()" function within LibRaw versions before 0.19.1 (internal/dcraw_common.cpp) can be exploited to trigger an infinite loop.
Libraw Libraw
Debian Debian Linux 8.0
7.5
CVSSv3
CVE-2018-5818
An error within the "parse_rollei()" function (internal/dcraw_common.cpp) within LibRaw versions before 0.19.1 can be exploited to trigger an infinite loop.
Libraw Libraw
Debian Debian Linux 8.0
7.5
CVSSv3
CVE-2018-5819
An error within the "parse_sinar_ia()" function (internal/dcraw_common.cpp) within LibRaw versions before 0.19.1 can be exploited to exhaust available CPU resources.
Libraw Libraw
Debian Debian Linux 8.0
NA
CVE-2013-2126
Multiple double free vulnerabilities in the LibRaw::unpack function in libraw_cxx.cpp in LibRaw prior to 0.15.2 allow context-dependent malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via a malformed full-color (1) Foveon or (2...
Libraw Libraw 0.15.0
Libraw Libraw
Opensuse Opensuse 12.3
Canonical Ubuntu Linux 12.10
Opensuse Opensuse 12.2
Canonical Ubuntu Linux 13.04
Canonical Ubuntu Linux 12.04
8.8
CVSSv3
CVE-2017-16909
An error related to the "LibRaw::panasonic_load_raw()" function (dcraw_common.cpp) in LibRaw versions before 0.18.6 can be exploited to cause a heap-based buffer overflow and subsequently cause a crash via a specially crafted TIFF image.
Libraw Libraw
Canonical Ubuntu Linux 17.10
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
6.5
CVSSv3
CVE-2017-16910
An error within the "LibRaw::xtrans_interpolate()" function (internal/dcraw_common.cpp) in LibRaw versions before 0.18.6 can be exploited to cause an invalid read memory access and subsequently a Denial of Service condition.
Libraw Libraw
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 17.10
8.8
CVSSv3
CVE-2018-5807
An error within the "samsung_load_raw()" function (internal/dcraw_common.cpp) in LibRaw versions before 0.18.9 can be exploited to cause an out-of-bounds read memory access and subsequently cause a crash.
Libraw Libraw
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 18.04
8.8
CVSSv3
CVE-2018-5810
An error within the "rollei_load_raw()" function (internal/dcraw_common.cpp) in LibRaw versions before 0.18.9 can be exploited to cause a heap-based buffer overflow and subsequently cause a crash.
Libraw Libraw
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »