CPE-2B046F4D-EF86-4F0D-9F52-F887A2566078 Detail

CPE Details

LibRaw 0.18.8

Vendor

libraw

Product

libraw

Version

0.18.8

Created

2019-03-22
16h15 +00:00

Modified

2019-03-22
16h15 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:libraw:libraw:0.18.8:::::::*

Informations

Vendor

libraw

Product

libraw

Version

0.18.8

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2020-22628	2023-08-21 22h00 +00:00	Buffer Overflow vulnerability in LibRaw::stretch() function in libraw\src\postprocessing\aspect_ratio.cpp.	6.5	Medium
CVE-2023-1729	2023-05-14 22h00 +00:00	A flaw was found in LibRaw. A heap-buffer-overflow in raw2image_ex() caused by a maliciously crafted file may lead to an application crash.	6.5	Medium
CVE-2020-24870	2021-06-02 13h32 +00:00	Libraw before 0.20.1 has a stack buffer overflow via LibRaw::identify_process_dng_fields in identify.cpp.	8.8	High
CVE-2020-24889	2020-09-16 12h55 +00:00	A buffer overflow vulnerability in LibRaw version < 20.0 LibRaw::GetNormalizedModel in src/metadata/normalize_model.cpp may lead to context-dependent arbitrary code execution.	7.8	High
CVE-2020-15503	2020-07-01 22h00 +00:00	LibRaw before 0.20-RC1 lacks a thumbnail size range check. This affects decoders/unpack_thumb.cpp, postprocessing/mem_image.cpp, and utils/thumb_utils.cpp. For example, malloc(sizeof(libraw_processed_image_t)+T.tlength) occurs without validating T.tlength.	7.5	High
CVE-2018-5817	2019-02-20 18h00 +00:00	A type confusion error within the "unpacked_load_raw()" function within LibRaw versions prior to 0.19.1 (internal/dcraw_common.cpp) can be exploited to trigger an infinite loop.	7.5	High
CVE-2018-5819	2019-02-20 18h00 +00:00	An error within the "parse_sinar_ia()" function (internal/dcraw_common.cpp) within LibRaw versions prior to 0.19.1 can be exploited to exhaust available CPU resources.	7.5	High
CVE-2018-5818	2019-02-20 17h00 +00:00	An error within the "parse_rollei()" function (internal/dcraw_common.cpp) within LibRaw versions prior to 0.19.1 can be exploited to trigger an infinite loop.	7.5	High
CVE-2018-20363	2018-12-22 16h00 +00:00	LibRaw::raw2image in libraw_cxx.cpp in LibRaw 0.19.1 has a NULL pointer dereference.	6.5	Medium
CVE-2018-20364	2018-12-22 16h00 +00:00	LibRaw::copy_bayer in libraw_cxx.cpp in LibRaw 0.19.1 has a NULL pointer dereference.	6.5	Medium
CVE-2018-20365	2018-12-22 16h00 +00:00	LibRaw::raw2image() in libraw_cxx.cpp has a heap-based buffer overflow.	6.5	Medium
CVE-2018-5807	2018-12-07 21h00 +00:00	An error within the "samsung_load_raw()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.9 can be exploited to cause an out-of-bounds read memory access and subsequently cause a crash.	8.8	High
CVE-2018-5808	2018-12-07 21h00 +00:00	An error within the "find_green()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.9 can be exploited to cause a stack-based buffer overflow and subsequently execute arbitrary code.	8.8	High
CVE-2018-5809	2018-12-07 21h00 +00:00	An error within the "LibRaw::parse_exif()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.9 can be exploited to cause a stack-based buffer overflow and subsequently execute arbitrary code.	8.8	High
CVE-2018-5810	2018-12-07 21h00 +00:00	An error within the "rollei_load_raw()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.9 can be exploited to cause a heap-based buffer overflow and subsequently cause a crash.	8.8	High
CVE-2018-5811	2018-12-07 21h00 +00:00	An error within the "nikon_coolscan_load_raw()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.9 can be exploited to cause an out-of-bounds read memory access and subsequently cause a crash.	6.5	Medium
CVE-2018-5812	2018-12-07 21h00 +00:00	An error within the "nikon_coolscan_load_raw()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.9 can be exploited to trigger a NULL pointer dereference.	6.5	Medium
CVE-2018-5813	2018-12-07 21h00 +00:00	An error within the "parse_minolta()" function (dcraw/dcraw.c) in LibRaw versions prior to 0.18.11 can be exploited to trigger an infinite loop via a specially crafted file.	6.5	Medium
CVE-2018-5815	2018-12-07 21h00 +00:00	An integer overflow error within the "parse_qt()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.12 can be exploited to trigger an infinite loop via a specially crafted Apple QuickTime file.	6.5	Medium
CVE-2018-5816	2018-12-07 21h00 +00:00	An integer overflow error within the "identify()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.12 can be exploited to trigger a division by zero via specially crafted NOKIARAW file (Note: This vulnerability is caused due to an incomplete fix of CVE-2018-5804).	6.5	Medium

LibRaw 0.18.8

CPE Details

CPE Name: cpe:2.3:a:libraw:libraw:0.18.8:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:libraw:libraw:0.18.8:::::::*