A stack-based buffer overflow in the find_green() function of dcraw up to and including 9.28, as used in ufraw-batch and many other products, may allow a remote malicious user to cause a control-flow hijack, denial-of-service, or unspecified other impact via a maliciously crafted raw photo file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dcraw project dcraw |
||
suse suse linux enterprise server 11 |
||
suse suse linux enterprise server 12 |
||
suse suse linux enterprise desktop 12 |