VDB
GCVE-VVD-MAGEIA-2020-157
GCVE-VVD-MAGEIA-2020-157
Advisory Published
The updated packages fix security vulnerabilities:
There is a floating point exception in the kodak_radc_load_raw function
in dcraw_common.cpp in LibRaw 0.18.2. It will lead to a remote denial
of service attack. (CVE-2017-13735)
In LibRaw through 0.18.4, an out of bounds read flaw related to
kodak_65000_load_raw has been reported in dcraw/dcraw.c and internal/
dcraw_common.cpp. An attacker could possibly exploit this flaw to
disclose potentially sensitive memory or cause an application crash.
(CVE-2017-14608)
A stack-based buffer overflow in the find_green() function of dcraw
through 9.28, as used in ufraw-batch and many other products, may allow
a remote attacker to cause a control-flow hijack, denial-of-service, or
unspecified other impact via a maliciously crafted raw photo file.
(CVE-2018-19655)
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | dcraw | 0 (affected), 9.28.0-2.1.mga7 (unaffected), 0 (affected), 9.28.0-2.1.mga7 (unaffected) | — |
| Mageia | perl-Template-Toolkit | 0 (affected), 3.8.0-1.mga7 (unaffected) | — |
Aliases
Transitive aliases
VVD-MAGEIA-2017-359VVD-MAGEIA-2017-357EUVD-2017-6109EUVD-2017-5851EUVD-2017-5768VVD-MAGEIA-2021-4EUVD-2017-5252GHSA-86c2-8h98-4wr6GHSA-mfpv-jgj6-hw2hCVE-2017-14348BDU:2023-07746BDU:2022-06034EUVD-2018-11339GHSA-m4wr-g4j4-7v6hGHSA-hwmr-77fp-f5hfBDU:2023-07748CVE-2017-14265GHSA-mhmm-m867-5r8pBDU:2023-07712
References
Browse GCVE Records
100 records in the GCVE database · Updated April 16, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.