Oval Definition:oval:org.opensuse.security:def:124825
Revision Date:2019-01-18Version:1
Title:Security update for libraw (Moderate)
Description:

This update for libraw fixes the following issues:

Security issues fixed: - CVE-2018-20365: Fixed a heap-based buffer overflow in the raw2image function of libraw_cxx.cpp (bsc#1120500) - CVE-2018-20364: Fixed a NULL pointer dereference in the copy_bayer function of libraw_cxx.cpp (bsc#1120499) - CVE-2018-20363: Fixed a NULL pointer dereference in the raw2image function of libraw_cxx.cpp (bsc#1120498) - CVE-2018-5817: Fixed an infinite loop in the unpacked_load_raw function of dcraw_common.cpp (bsc#1120515) - CVE-2018-5818: Fixed an infinite loop in the parse_rollei function of dcraw_common.cpp (bsc#1120516) - CVE-2018-5819: Fixed a denial of service in the parse_sinar_ia function of dcraw_common.cpp (bsc#1120517)
Family:unixClass:patch
Status:Reference(s):1120498
1120499
1120500
1120515
1120516
1120517
CVE-2018-20363
CVE-2018-20364
CVE-2018-20365
CVE-2018-5817
CVE-2018-5818
CVE-2018-5819
SUSE-SU-2019:0127-1
Platform(s):SUSE Linux Enterprise Desktop 12 SP4
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND libraw9-0.15.4-30.1 is installed
  • BACK