FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

libraw -- buffer overflow

Affected packages
libraw < 0.18.4

Details

VuXML ID d9f96741-47bd-4426-9aba-8736c0971b24
Discovery 2017-09-12
Entry 2017-09-26

libraw developers report:

LibRaw before 0.18.4 has a heap-based Buffer Overflow in the processCanonCameraInfo function via a crafted file.

References

CVE Name CVE-2017-14348
URL http://www.securityfocus.com/bid/100866
URL https://github.com/LibRaw/LibRaw/issues/100