VDB

GCVE-VVD-MAGEIA-2017-357

GCVE-VVD-MAGEIA-2017-357
Advisory Published
Vulnetix · Advisory published October 5, 2017
There is a floating point exception in the kodak_radc_load_raw function in dcraw_common.cpp in LibRaw 0.18.2. It will lead to a remote denial of service attack. (CVE-2017-13735) A Stack-based Buffer Overflow was discovered in xtrans_interpolate in internal/dcraw_common.cpp in LibRaw before 0.18.3. It could allow a remote denial of service or code execution attack. (CVE-2017-14265) LibRaw before 0.18.4 has a heap-based Buffer Overflow in the processCanonCameraInfo function via a crafted file. (CVE-2017-14348)
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageialibraw0 (affected), 0.18.5-1.mga6 (unaffected)
Mageialibraw0 (affected), 0.16.2-1.4.mga5 (unaffected)

Aliases

CVE-2017-13735CVE-2017-14348CVE-2017-14265

Transitive aliases

BDU:2023-07748EUVD-2017-5252CVE-2018-19655GHSA-mfpv-jgj6-hw2hVVD-MAGEIA-2021-4GHSA-mhmm-m867-5r8pEUVD-2017-5851EUVD-2017-5768EUVD-2018-11339BDU:2022-06034VVD-MAGEIA-2017-359VVD-MAGEIA-2020-157GHSA-hwmr-77fp-f5hfGHSA-m4wr-g4j4-7v6hBDU:2023-07712BDU:2023-07746CVE-2017-14608GHSA-86c2-8h98-4wr6EUVD-2017-6109

References

Updated libraw packages fix security vulnerabilities
advisory
Updated libraw packages fix security vulnerabilities
issue
Updated libraw packages fix security vulnerabilities
issue
Updated libraw packages fix security vulnerabilities
issue
Updated libraw packages fix security vulnerabilities
issue
Updated libraw packages fix security vulnerabilities
issue
Updated libraw packages fix security vulnerabilities
issue
Updated libraw packages fix security vulnerabilities
issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›