rpm package
opensuse/gimp-ufraw&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/gimp-ufraw&distro=openSUSE%20Tumbleweed
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2015-8366 | — | < 0.22-9.4 | 0.22-9.4 | Jan 14, 2020 | Array index error in smal_decode_segment function in LibRaw before 0.17.1 allows context-dependent attackers to cause memory errors and possibly execute arbitrary code via vectors related to indexes. | ||
| CVE-2018-19655 | — | < 0.22-9.4 | 0.22-9.4 | Nov 29, 2018 | A stack-based buffer overflow in the find_green() function of dcraw through 9.28, as used in ufraw-batch and many other products, may allow a remote attacker to cause a control-flow hijack, denial-of-service, or unspecified other impact via a maliciously crafted raw photo file. |
- CVE-2015-8366Jan 14, 2020affected < 0.22-9.4fixed 0.22-9.4
Array index error in smal_decode_segment function in LibRaw before 0.17.1 allows context-dependent attackers to cause memory errors and possibly execute arbitrary code via vectors related to indexes.
- CVE-2018-19655Nov 29, 2018affected < 0.22-9.4fixed 0.22-9.4
A stack-based buffer overflow in the find_green() function of dcraw through 9.28, as used in ufraw-batch and many other products, may allow a remote attacker to cause a control-flow hijack, denial-of-service, or unspecified other impact via a maliciously crafted raw photo file.