[Git][security-tracker-team/security-tracker][master] Add four entries for libraw

Salvatore Bonaccorso carnil at debian.org
Wed Aug 1 04:07:32 BST 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d37f4b13 by Salvatore Bonaccorso at 2018-08-01T03:06:51Z
Add four entries for libraw

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -24137,18 +24137,30 @@ CVE-2018-5813 [infinite loop in the parse_minolta function in dcraw/dcraw.c]
 	- libraw 0.18.11-1 (low)
 	[stretch] - libraw <no-dsa> (Minor issue)
 	NOTE: https://secuniaresearch.flexerasoftware.com/secunia_research/2018-13/
-CVE-2018-5812
+CVE-2018-5812 [NULL pointer dereference in nikon_coolscan_load_raw internal/dcraw_common.cpp]
 	RESERVED
-CVE-2018-5811
+	- libraw 0.18.11-1
+	[stretch] - libraw <no-dsa> (Minor issue)
+	NOTE: https://secuniaresearch.flexerasoftware.com/secunia_research/2018-10/
+CVE-2018-5811 [out-of-bounds read in nikon_coolscan_load_raw internal/dcraw_common.cpp]
 	RESERVED
-CVE-2018-5810
+	- libraw 0.18.11-1
+	[stretch] - libraw <no-dsa> (Minor issue)
+	NOTE: https://secuniaresearch.flexerasoftware.com/secunia_research/2018-10/
+CVE-2018-5810 [heap-based buffer overflow in rollei_load_raw internal/dcraw_common.cpp]
 	RESERVED
+	- libraw 0.18.11-1
+	[stretch] - libraw <no-dsa> (Minor issue)
+	NOTE: https://secuniaresearch.flexerasoftware.com/secunia_research/2018-10/
 CVE-2018-5809
 	RESERVED
 CVE-2018-5808
 	RESERVED
-CVE-2018-5807
+CVE-2018-5807 [out-of-bounds read in samsung_load_raw internal/dcraw_common.cpp]
 	RESERVED
+	- libraw 0.18.11-1
+	[stretch] - libraw <no-dsa> (Minor issue)
+	NOTE: https://secuniaresearch.flexerasoftware.com/secunia_research/2018-10/
 CVE-2018-5806 [NULL pointer dereference in leaf_hdr_load_raw() function in internal/dcraw_common.cpp]
 	RESERVED
 	- libraw 0.18.8-1 (low)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d37f4b13f6907b51114babc86df8a20d6524e6f1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d37f4b13f6907b51114babc86df8a20d6524e6f1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180801/aa44993f/attachment.html>

More information about the debian-security-tracker-commits mailing list