Oval Definition:oval:org.opensuse.security:def:201714608
Revision Date:2022-09-02Version:1
Title:CVE-2017-14608
Description:

In LibRaw through 0.18.4, an out of bounds read flaw related to kodak_65000_load_raw has been reported in dcraw/dcraw.c and internal/dcraw_common.cpp. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2017-14608
SUSE-SU-2017:3392-1
openSUSE-SU-2017:2848-1
Mitre CVE-2017-14608
SUSE CVE-2017-14608
SUSE-SU-2017:3392-1
openSUSE-SU-2017:2848-1
SUSE-SU-2022:1277-1
SUSE-SU-2022:1749-1
Platform(s):openSUSE Leap 15.3
openSUSE Leap 42.2
openSUSE Leap 42.3
openSUSE Tumbleweed
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Desktop 12 SP5
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP5
SUSE Linux Enterprise Server for SAP Applications 12 SP2
SUSE Linux Enterprise Server for SAP Applications 12 SP3
SUSE Linux Enterprise Server for SAP Applications 12 SP4
SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Software Development Kit 12 SP3
SUSE Linux Enterprise Software Development Kit 12 SP4
SUSE Linux Enterprise Software Development Kit 12 SP5
SUSE Linux Enterprise Workstation Extension 12 SP2
SUSE Linux Enterprise Workstation Extension 12 SP3
SUSE Linux Enterprise Workstation Extension 12 SP4
SUSE Linux Enterprise Workstation Extension 12 SP5
Product(s):
Definition Synopsis
  • openSUSE Leap 42.2 is installed
  • AND Package Information
  • libraw-0.17.1-2.14.1 is installed
  • AND libraw is signed with openSUSE key
  • OR
  • libraw-devel-0.17.1-2.14.1 is installed
  • AND libraw-devel is signed with openSUSE key
  • OR
  • libraw-devel-static-0.17.1-2.14.1 is installed
  • AND libraw-devel-static is signed with openSUSE key
  • OR
  • libraw-tools-0.17.1-2.14.1 is installed
  • AND libraw-tools is signed with openSUSE key
  • OR
  • libraw15-0.17.1-2.14.1 is installed
  • AND libraw15 is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Leap 42.3 is installed
  • AND Package Information
  • libraw-0.17.1-14 is installed
  • AND libraw is signed with openSUSE key
  • OR
  • libraw-devel-0.17.1-14 is installed
  • AND libraw-devel is signed with openSUSE key
  • OR
  • libraw-devel-static-0.17.1-14 is installed
  • AND libraw-devel-static is signed with openSUSE key
  • OR
  • libraw-tools-0.17.1-14 is installed
  • AND libraw-tools is signed with openSUSE key
  • OR
  • libraw15-0.17.1-14 is installed
  • AND libraw15 is signed with openSUSE key
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND
  • libraw-0.15.4-16 is installed
  • OR libraw9-0.15.4-16 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND
  • libraw-0.15.4-16 is installed
  • OR libraw9-0.15.4-16 is installed
  • OR Package Information
  • SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • AND
  • libraw-0.15.4-16 is installed
  • OR libraw-devel-0.15.4-16 is installed
  • OR libraw-devel-static-0.15.4-16 is installed
  • OR libraw9-0.15.4-16 is installed
  • OR Package Information
  • SUSE Linux Enterprise Software Development Kit 12 SP3 is installed
  • AND
  • libraw-0.15.4-16 is installed
  • OR libraw-devel-0.15.4-16 is installed
  • OR libraw-devel-static-0.15.4-16 is installed
  • OR libraw9-0.15.4-16 is installed
  • OR Package Information
  • SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • AND
  • libraw-0.15.4-16 is installed
  • OR libraw9-0.15.4-16 is installed
  • OR Package Information
  • SUSE Linux Enterprise Workstation Extension 12 SP3 is installed
  • AND
  • libraw-0.15.4-16 is installed
  • OR libraw9-0.15.4-16 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND
  • libraw-0.15.4-16 is installed
  • OR libraw9-0.15.4-16 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND
  • libraw-0.15.4-16 is installed
  • OR libraw9-0.15.4-16 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • AND
  • libraw-0.15.4-16 is installed
  • OR libraw9-0.15.4-16 is installed
  • OR Package Information
  • SUSE Linux Enterprise Workstation Extension 12 SP3 is installed
  • AND
  • libraw-0.15.4-16 is installed
  • OR libraw9-0.15.4-16 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP4 is installed
  • AND libraw9-0.15.4-21 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • OR SUSE Linux Enterprise Desktop 12 SP3 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP3 is installed
  • AND
  • libraw-0.15.4-16 is installed
  • OR libraw9-0.15.4-16 is installed
  • OR Package Information
  • SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • OR SUSE Linux Enterprise Software Development Kit 12 SP3 is installed
  • AND
  • libraw-0.15.4-16 is installed
  • OR libraw-devel-0.15.4-16 is installed
  • OR libraw-devel-static-0.15.4-16 is installed
  • OR libraw9-0.15.4-16 is installed
  • OR Package Information
  • SUSE Linux Enterprise Software Development Kit 12 SP4 is installed
  • AND
  • libraw-devel-0.15.4-21 is installed
  • OR libraw-devel-static-0.15.4-21 is installed
  • OR libraw9-0.15.4-21 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND libraw9-0.15.4-21.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • OR SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND libraw9-0.15.4-16.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Workstation Extension 12 SP4 is installed
  • AND libraw9-0.15.4-21 is installed
  • OR Package Information
  • SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP3 is installed
  • AND
  • libraw-0.15.4-16 is installed
  • OR libraw9-0.15.4-16 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP4 is installed
  • AND libraw9-0.15.4-21 is installed
  • OR Package Information
  • SUSE Linux Enterprise Workstation Extension 12 SP5 is installed
  • AND libraw9-0.15.4-30 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • OR SUSE Linux Enterprise Desktop 12 SP3 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP3 is installed
  • AND
  • libraw-0.15.4-16 is installed
  • OR libraw9-0.15.4-16 is installed
  • OR Package Information
  • SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • OR SUSE Linux Enterprise Software Development Kit 12 SP3 is installed
  • AND
  • libraw-0.15.4-16 is installed
  • OR libraw-devel-0.15.4-16 is installed
  • OR libraw-devel-static-0.15.4-16 is installed
  • OR libraw9-0.15.4-16 is installed
  • OR Package Information
  • SUSE Linux Enterprise Software Development Kit 12 SP4 is installed
  • AND
  • libraw-devel-0.15.4-21 is installed
  • OR libraw-devel-static-0.15.4-21 is installed
  • OR libraw9-0.15.4-21 is installed
  • OR Package Information
  • SUSE Linux Enterprise Software Development Kit 12 SP5 is installed
  • AND
  • libraw-devel-0.15.4-30 is installed
  • OR libraw-devel-static-0.15.4-30 is installed
  • OR libraw9-0.15.4-30 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Workstation Extension 12 SP4 is installed
  • AND libraw9-0.15.4-21 is installed
  • OR Package Information
  • SUSE Linux Enterprise Workstation Extension 12 SP5 is installed
  • AND libraw9-0.15.4-30 is installed
  • OR Package Information
  • SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP3 is installed
  • AND
  • libraw-0.15.4-16 is installed
  • OR libraw9-0.15.4-16 is installed
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • dcraw-9.28.0-1.6 is installed
  • OR dcraw-lang-9.28.0-1.6 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP4 is installed
  • AND libraw9-0.15.4-21.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Workstation Extension 12 SP5 is installed
  • AND libraw9-0.15.4-30.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • OR SUSE Linux Enterprise Desktop 12 SP3 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP3 is installed
  • AND libraw9-0.15.4-16.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Software Development Kit 12 SP4 is installed
  • AND
  • libraw-devel-0.15.4-21.1 is installed
  • OR libraw-devel-static-0.15.4-21.1 is installed
  • OR libraw9-0.15.4-21.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Software Development Kit 12 SP5 is installed
  • AND
  • libraw-devel-0.15.4-30.1 is installed
  • OR libraw-devel-static-0.15.4-30.1 is installed
  • OR libraw9-0.15.4-30.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • OR SUSE Linux Enterprise Software Development Kit 12 SP3 is installed
  • AND
  • libraw-devel-0.15.4-16.1 is installed
  • OR libraw-devel-static-0.15.4-16.1 is installed
  • OR libraw9-0.15.4-16.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.3 is installed
  • AND Package Information
  • dcraw-9.28.0-150000.3.3.1 is installed
  • AND dcraw is signed with openSUSE key
  • OR
  • dcraw-lang-9.28.0-150000.3.3.1 is installed
  • AND dcraw-lang is signed with openSUSE key
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 12 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed
  • OR SUSE Linux Enterprise Software Development Kit 12 SP5 is installed
  • AND
  • dcraw-9.28.0-3.3.1 is installed
  • OR libraw-devel-0.15.4-30.1 is installed
  • OR libraw-devel-static-0.15.4-30.1 is installed
  • OR libraw9-0.15.4-30.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP5 is installed
  • OR SUSE Linux Enterprise Server 12 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP5 is installed
  • AND
  • dcraw-9.28.0-3.3.1 is installed
  • OR dcraw-lang-9.28.0-3.3.1 is installed
  • OR libraw9-0.15.4-30.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • OR SUSE Linux Enterprise Server 12 SP4 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed
  • OR SUSE Linux Enterprise Workstation Extension 12 SP4 is installed
  • AND libraw9-0.15.4-21.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • OR SUSE Linux Enterprise Server 12 SP4 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed
  • OR SUSE Linux Enterprise Software Development Kit 12 SP4 is installed
  • AND
  • libraw-devel-0.15.4-21.1 is installed
  • OR libraw-devel-static-0.15.4-21.1 is installed
  • OR libraw9-0.15.4-21.1 is installed
    • BACK