| Max CVSS | 7.8 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-5800 | 4.3 |
An off-by-one error within the "LibRaw::kodak_ycbcr_load_raw()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.7 can be exploited to cause a heap-based buffer overflow and subsequently cause a crash.
|
20-11-2020 - 15:48 | 07-12-2018 - 22:29 | |
| CVE-2018-5802 | 6.8 |
An error within the "kodak_radc_load_raw()" function (internal/dcraw_common.cpp) related to the "buf" variable in LibRaw versions prior to 0.18.7 can be exploited to cause an out-of-bounds read memory access and subsequently cause a crash.
|
10-11-2020 - 19:31 | 07-12-2018 - 22:29 | |
| CVE-2018-5818 | 5.0 |
An error within the "parse_rollei()" function (internal/dcraw_common.cpp) within LibRaw versions prior to 0.19.1 can be exploited to trigger an infinite loop.
|
24-08-2020 - 17:37 | 20-02-2019 - 18:29 | |
| CVE-2018-5808 | 6.8 |
An error within the "find_green()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.9 can be exploited to cause a stack-based buffer overflow and subsequently execute arbitrary code.
|
24-08-2020 - 17:37 | 07-12-2018 - 22:29 | |
| CVE-2018-5817 | 5.0 |
A type confusion error within the "unpacked_load_raw()" function within LibRaw versions prior to 0.19.1 (internal/dcraw_common.cpp) can be exploited to trigger an infinite loop.
|
21-05-2019 - 16:29 | 20-02-2019 - 18:29 | |
| CVE-2018-5819 | 7.8 |
An error within the "parse_sinar_ia()" function (internal/dcraw_common.cpp) within LibRaw versions prior to 0.19.1 can be exploited to exhaust available CPU resources.
|
21-05-2019 - 16:29 | 20-02-2019 - 18:29 | |
| CVE-2018-5801 | 4.3 |
An error within the "LibRaw::unpack()" function (src/libraw_cxx.cpp) in LibRaw versions prior to 0.18.7 can be exploited to trigger a NULL pointer dereference.
|
29-03-2019 - 14:21 | 07-12-2018 - 22:29 |