ID CVE-2015-3885
Summary Integer overflow in the ljpeg_start function in dcraw 7.00 and earlier allows remote attackers to cause a denial of service (crash) via a crafted image, which triggers a buffer overflow, related to the len variable.
References
Vulnerable Configurations
  • dcraw project dcraw 7.00
    cpe:2.3:a:dcraw_project:dcraw:7.00
  • Fedora 21
    cpe:2.3:o:fedoraproject:fedora:21
CVSS
Base: 4.3 (as of 25-06-2015 - 09:52)
Impact:
Exploitability:
CWE CWE-189
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
nessus via4
  • NASL family Gentoo Local Security Checks
    NASL id GENTOO_GLSA-201706-17.NASL
    description The remote host is affected by the vulnerability described in GLSA-201706-17 (Kodi: Multiple vulnerabilities) Multiple vulnerabilities have been discovered in Kodi. Please review the CVE identifiers referenced below for details. Impact : A remote attacker could entice a user to open a specially crafted image file using Kodi, possibly resulting in a Denial of Service condition. Furthermore, a remote attacker could entice a user process a specially crafted ZIP file containing subtitles using Kodi, possibly resulting in execution of arbitrary code with the privileges of the process or a Denial of Service condition. Workaround : There is no known workaround at this time.
    last seen 2019-02-21
    modified 2018-01-26
    plugin id 100943
    published 2017-06-21
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=100943
    title GLSA-201706-17 : Kodi: Multiple vulnerabilities
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2015-8706.NASL
    description This update contains a fix for a bug which could cause dcraw write past array boundaries. Additionally, it updates ufraw to version 0.21, an upstream bugfix release. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2015-10-19
    plugin id 84033
    published 2015-06-09
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=84033
    title Fedora 20 : ufraw-0.21-1.fc20 (2015-8706)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2015-8432.NASL
    description Latest upstream bugfix. Fixed dcraw vulnerability in ljpeg_start() Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2015-10-19
    plugin id 83837
    published 2015-05-27
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=83837
    title Fedora 22 : LibRaw-0.16.2-1.fc22 (2015-8432)
  • NASL family Debian Local Security Checks
    NASL id DEBIAN_DLA-228.NASL
    description A vulnerability has been discovered in the ExactImage image manipulation programs. CVE-2015-3885 Eduardo Castellanos discovered an Integer overflow in the dcraw version included in ExactImage. This vulnerability allows remote attackers to cause a denial of service (crash) via a crafted image. For the oldoldstable distribution (squeeze), these problems have been fixed in version 0.8.1-3+deb6u4. For the oldstable, stable, and testing distributions, these problems will be fixed soon. NOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-07-06
    plugin id 83886
    published 2015-05-29
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=83886
    title Debian DLA-228-1 : exactimage security update
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2015-8196.NASL
    description Rawstudio from github https://github.com/rawstudio/rawstudio/ . Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-01-30
    plugin id 84857
    published 2015-07-20
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=84857
    title Fedora 22 : rawstudio-2.1-0.1.20150511git983bda1.fc22 (2015-8196)
  • NASL family Gentoo Local Security Checks
    NASL id GENTOO_GLSA-201701-60.NASL
    description The remote host is affected by the vulnerability described in GLSA-201701-60 (LibRaw: Multiple vulnerabilities) Multiple vulnerabilities have been discovered in LibRaw. Please review the CVE identifiers referenced below for details. Impact : An attacker could execute arbitrary code, cause a Denial of Service condition, or have other unspecified impacts. Workaround : There is no known workaround at this time.
    last seen 2019-02-21
    modified 2017-05-01
    plugin id 96746
    published 2017-01-25
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=96746
    title GLSA-201701-60 : LibRaw: Multiple vulnerabilities
  • NASL family SuSE Local Security Checks
    NASL id SUSE_SU-2017-2300-1.NASL
    description This update for libraw fixes the following issues : - CVE-2015-3885: A specially crafted raw image file could have caused a Denial of Service through an integer overflow. (bsc#930683) - CVE-2015-8367: The function phase_one_correct() did not handle memory object initialization correctly, which may have caused some other problems. (bsc#957517) - CVE-2017-6886: memory corruption in parse_tiff_ifd() func (internal/dcraw_common.cpp) could lead to Denial of service (bsc#1039380) - CVE-2017-6889: integer overflow error within the 'foveon_load_camf()' function (dcraw_foveon.c) could lead to Denial of service (bsc#1039210) - CVE-2017-6890: boundary error within the 'foveon_load_camf()' function (dcraw_foveon.c) (bsc#1039209) Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-11-30
    plugin id 102855
    published 2017-08-31
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=102855
    title SUSE SLED12 Security Update : libraw (SUSE-SU-2017:2300-1)
  • NASL family Ubuntu Local Security Checks
    NASL id UBUNTU_USN-3492-1.NASL
    description It was discovered that LibRaw incorrectly handled photo files. If a user or automated system were tricked into processing a specially crafted photo file, a remote attacker could cause applications linked against LibRaw to crash, resulting in a denial of service, or possibly execute arbitrary code. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-12-01
    plugin id 104785
    published 2017-11-27
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=104785
    title Ubuntu 14.04 LTS / 16.04 LTS / 17.04 / 17.10 : libraw vulnerabilities (USN-3492-1)
  • NASL family Debian Local Security Checks
    NASL id DEBIAN_DLA-243.NASL
    description [This DLA supersedes my wrong announcement using DLA 241-1] CVE-2015-3885: Integer overflow in the ljpeg_start function in dcraw 7.00 and earlier allows remote attackers to cause a denial of service (crash) via a crafted image, which triggers a buffer overflow, related to the len variable. We recommend that you upgrade your libraw packages. -- Matteo F. Vescovi || Debian Developer GnuPG KeyID: 4096R/0x8062398983B2CF7A NOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-07-06
    plugin id 84094
    published 2015-06-11
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=84094
    title Debian DLA-243-1 : libraw security update
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2015-8444.NASL
    description Update to version 0.16.2, see http://www.libraw.org/download#changelog for details. Update to version 0.16.1, see http://www.libraw.org/download#changelog for details. Security fix for CVE-2015-3885. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-11-20
    plugin id 83838
    published 2015-05-27
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=83838
    title Fedora 22 : mingw-LibRaw-0.16.2-1.fc22 (2015-8444)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2015-8170.NASL
    description Rawstudio from github https://github.com/rawstudio/rawstudio/ . Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2015-10-19
    plugin id 84856
    published 2015-07-20
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=84856
    title Fedora 21 : rawstudio-2.1-0.1.20150511git983bda1.fc21 (2015-8170)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2015-8717.NASL
    description This update contains a fix for a bug which could cause dcraw write past array boundaries. Additionally, it updates ufraw to version 0.21, an upstream bugfix release. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2015-10-19
    plugin id 84034
    published 2015-06-09
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=84034
    title Fedora 21 : ufraw-0.21-1.fc21 (2015-8717)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2015-8187.NASL
    description Security fix for CVE-2015-3885 (dcraw input sanitization), bz #1221257 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2015-10-19
    plugin id 83892
    published 2015-05-29
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=83892
    title Fedora 22 : rawtherapee-4.2-9.fc22 (2015-8187)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2015-8266.NASL
    description Security fix for CVE-2015-3885 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2015-10-19
    plugin id 83833
    published 2015-05-27
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=83833
    title Fedora 20 : mingw-LibRaw-0.15.4-5.fc20 (2015-8266)
  • NASL family SuSE Local Security Checks
    NASL id OPENSUSE-2015-378.NASL
    description The libraw library was updated to fix one security issue. The following vulnerability was fixed : - boo#930683: CVE-2015-3885: dcraw/libraw: input sanitization errors
    last seen 2019-02-21
    modified 2015-05-26
    plugin id 83804
    published 2015-05-26
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=83804
    title openSUSE Security Update : libraw (openSUSE-2015-378)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2015-8621.NASL
    description This update contains a fix for a bug which could cause dcraw write past array boundaries. Additionally, it updates dcraw to version 9,25.0 which contains updated color matrices and supports the Canon EOS 5DS. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2015-10-19
    plugin id 84029
    published 2015-06-09
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=84029
    title Fedora 22 : dcraw-9.25.0-2.fc22 (2015-8621)
  • NASL family Debian Local Security Checks
    NASL id DEBIAN_DSA-3692.NASL
    description Multiple vulnerabilities were discovered in the FreeImage multimedia library, which might result in denial of service or the execution of arbitrary code if a malformed XMP or RAW image is processed.
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 94056
    published 2016-10-14
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=94056
    title Debian DSA-3692-1 : freeimage - security update
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2015-8699.NASL
    description This update contains a fix for a bug which could cause dcraw write past array boundaries. Additionally, it updates ufraw to version 0.21, an upstream bugfix release. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2015-10-19
    plugin id 84032
    published 2015-06-09
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=84032
    title Fedora 22 : ufraw-0.21-1.fc22 (2015-8699)
  • NASL family FreeBSD Local Security Checks
    NASL id FREEBSD_PKG_57325ECFFACC11E4968FB888E347C638.NASL
    description ocert reports : The dcraw tool, as well as several other projects re-using its code, suffers from an integer overflow condition which lead to a buffer overflow. The vulnerability concerns the 'len' variable, parsed without validation from opened images, used in the ljpeg_start() function. A maliciously crafted raw image file can be used to trigger the vulnerability, causing a Denial of Service condition.
    last seen 2019-02-21
    modified 2018-12-19
    plugin id 83512
    published 2015-05-18
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=83512
    title FreeBSD : dcraw -- integer overflow condition (57325ecf-facc-11e4-968f-b888e347c638)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2015-8498.NASL
    description Update to version 0.16.2, see http://www.libraw.org/download#changelog for details. Update to version 0.16.1, see http://www.libraw.org/download#changelog for details. Security fix for CVE-2015-3885. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-11-20
    plugin id 83899
    published 2015-05-29
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=83899
    title Fedora 21 : mingw-LibRaw-0.16.2-1.fc21 (2015-8498)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2015-8085.NASL
    description Update to version 0.16.1, see http://www.libraw.org/download#changelog for details. Security fix for CVE-2015-3885. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-11-20
    plugin id 83826
    published 2015-05-27
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=83826
    title Fedora 22 : mingw-LibRaw-0.16.1-1.fc22 (2015-8085)
  • NASL family Gentoo Local Security Checks
    NASL id GENTOO_GLSA-201701-54.NASL
    description The remote host is affected by the vulnerability described in GLSA-201701-54 (DCRaw: Buffer overflow) An integer overflow was discovered in the ljpeg_start function in DCRaw. Impact : Remote attackers, by enticing a user to open a specially crafted image, could cause a Denial of Service condition. Workaround : There is no known workaround at this time.
    last seen 2019-02-21
    modified 2017-01-23
    plugin id 96689
    published 2017-01-23
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=96689
    title GLSA-201701-54 : DCRaw: Buffer overflow
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2015-8671.NASL
    description This update contains a fix for a bug which could cause dcraw write past array boundaries. Additionally, it updates dcraw to version 9,25.0 which contains updated color matrices and supports the Canon EOS 5DS. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2015-10-19
    plugin id 84031
    published 2015-06-09
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=84031
    title Fedora 20 : dcraw-9.25.0-2.fc20 (2015-8671)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2015-8482.NASL
    description Latest upstream bugfix. Fixed dcraw vulnerability in ljpeg_start() Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2015-10-19
    plugin id 83898
    published 2015-05-29
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=83898
    title Fedora 21 : LibRaw-0.16.2-1.fc21 (2015-8482)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2015-8247.NASL
    description Patch for ljpeg_start() vulnerability. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2015-10-19
    plugin id 83831
    published 2015-05-27
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=83831
    title Fedora 20 : LibRaw-0.15.4-2.fc20 (2015-8247)
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2015-8647.NASL
    description This update contains a fix for a bug which could cause dcraw write past array boundaries. Additionally, it updates dcraw to version 9,25.0 which contains updated color matrices and supports the Canon EOS 5DS. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2015-10-19
    plugin id 84030
    published 2015-06-09
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=84030
    title Fedora 21 : dcraw-9.25.0-2.fc21 (2015-8647)
refmap via4
bid 74590
bugtraq 20150511 [oCERT-2015-006] dcraw input sanitization errors
confirm
fedora
  • FEDORA-2015-8170
  • FEDORA-2015-8482
  • FEDORA-2015-8498
  • FEDORA-2015-8621
  • FEDORA-2015-8647
  • FEDORA-2015-8671
  • FEDORA-2015-8699
  • FEDORA-2015-8706
  • FEDORA-2015-8717
gentoo
  • GLSA-201701-54
  • GLSA-201706-17
misc http://www.ocert.org/advisories/ocert-2015-006.html
Last major update 30-12-2016 - 21:59
Published 19-05-2015 - 14:59
Last modified 09-10-2018 - 15:56
Back to Top