CVE-2017-6889
N/A
N/A
Summary
An integer overflow error within the "foveon_load_camf()" function (dcraw_foveon.c) in LibRaw-demosaic-pack-GPL2 before 0.18.2 can be exploited to cause a heap-based buffer overflow.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| LibRaw | LibRaw-demosaic-pack-GPL2 | 0.x prior to 0.18.2 | affected |
Weaknesses
- Heap-based buffer overflow
ADP Enrichment
CVE Program Container
Additional References
- https://secuniaresearch.flexerasoftware.com/advisories/75000/
- https://github.com/LibRaw/LibRaw-demosaic-pack-GPL2/commit/194f592e205990ea8fce72b6c571c14350aca716
References
- https://secuniaresearch.flexerasoftware.com/advisories/75000/
- https://github.com/LibRaw/LibRaw-demosaic-pack-GPL2/commit/194f592e205990ea8fce72b6c571c14350aca716
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.