Computer Security
[EN] securityvulns.ru no-pyccku


libRaw / libKDcraw memory corruption
Published:01.07.2013
Source:
SecurityVulns ID:13146
Type:library
Threat Level:
5/10
Description:Memory corruption on full-color images processing.
Affected:LIBRAW : libraw 0.14
 LIBKDCRAW : libkdcraw 4.8
CVE:CVE-2013-2126 (Multiple double free vulnerabilities in the LibRaw::unpack function in libraw_cxx.cpp in LibRaw before 0.15.2 allow context-dependent attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a malformed full-color (1) Foveon or (2) sRAW image file.)
Original documentdocumentUBUNTU, [USN-1885-1] libKDcraw vulnerability (01.07.2013)
 documentUBUNTU, [USN-1884-1] LibRaw vulnerability (01.07.2013)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod