Sign in Subscribe

← All advisories

Unrated severityNVD Advisory· Published Aug 22, 2023· Updated Oct 3, 2024

CVE-2020-22628

CVE-2020-22628

Description

Buffer Overflow vulnerability in LibRaw::stretch() function in libraw\src\postprocessing\aspect_ratio.cpp.

Affected products

10

osv-coords10 versions
pkg:rpm/opensuse/libraw&distro=openSUSE%20Leap%2015.4 pkg:rpm/opensuse/libraw&distro=openSUSE%20Leap%2015.5 pkg:rpm/opensuse/libraw&distro=openSUSE%20Tumbleweed pkg:rpm/suse/libraw&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP4 pkg:rpm/suse/libraw&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP5 pkg:rpm/suse/libraw&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP5 pkg:rpm/suse/libraw&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5 pkg:rpm/suse/libraw&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP5 pkg:rpm/suse/libraw&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP4 pkg:rpm/suse/libraw&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP5
< 0.18.9-150000.3.23.1+ 9 more
- (no CPE)range: < 0.18.9-150000.3.23.1
- (no CPE)range: < 0.20.2-150400.3.9.1
- (no CPE)range: < 0.21.1-3.1
- (no CPE)range: < 0.20.2-150400.3.9.1
- (no CPE)range: < 0.20.2-150400.3.9.1
- (no CPE)range: < 0.20.2-150400.3.9.1
- (no CPE)range: < 0.15.4-42.1
- (no CPE)range: < 0.15.4-42.1
- (no CPE)range: < 0.18.9-150000.3.23.1
- (no CPE)range: < 0.18.9-150000.3.23.1

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

2

lists.debian.org/debian-lts-announce/2023/09/msg00007.htmlmitremailing-list
github.com/LibRaw/LibRaw/issues/269mitre

News mentions

0

No linked articles in our index yet.