ELA-748-1 libraw security update

Debian 10228 Published 2022-12-02 06:31 by Philipp Esselbach

News

A libraw security update has been released for Debian GNU/Linux 9 Extended LTS to address out of bounds memory accesses.

ELA-748-1 libraw security update

Package : libraw
Version : 0.16.0-9+deb8u6 (jessie)

Related CVEs :
CVE-2020-15503

This update adds thumbnail size checks to avoid out of bounds memory accesses.

CVE-2020-15503
LibRaw lacks a thumbnail size range check. This affects
decoders/unpack_thumb.cpp, postprocessing/mem_image.cpp, and
utils/thumb_utils.cpp. For example,
malloc(sizeof(libraw_processed_image_t)+T.tlength) occurs without
validating T.tlength.
ELA-748-1 libraw security update

USN-5743-2: LibTIFF vulnerability

tvOS 16.2 Beta 4 released

Community

dhamu
Hello Phil, I have a Linux Tutorial website that curre ...
StephanX
Hi friends, i am new in the Linux universe but i try to ...
Philipp
I would try the XanMod kernel: https://xanmod.org I ...

ELA-748-1 libraw security update

Windows

Linux

macOS

Community