| Max CVSS | 7.8 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-5818 | 5.0 |
An error within the "parse_rollei()" function (internal/dcraw_common.cpp) within LibRaw versions prior to 0.19.1 can be exploited to trigger an infinite loop.
|
24-08-2020 - 17:37 | 20-02-2019 - 18:29 | |
| CVE-2018-20365 | 4.3 |
LibRaw::raw2image() in libraw_cxx.cpp has a heap-based buffer overflow.
|
24-08-2020 - 17:37 | 22-12-2018 - 17:29 | |
| CVE-2018-20337 | 6.8 |
There is a stack-based buffer overflow in the parse_makernote function of dcraw_common.cpp in LibRaw 0.19.1. Crafted input will lead to a denial of service or possibly unspecified other impact.
|
24-08-2020 - 17:37 | 21-12-2018 - 09:29 | |
| CVE-2018-5817 | 5.0 |
A type confusion error within the "unpacked_load_raw()" function within LibRaw versions prior to 0.19.1 (internal/dcraw_common.cpp) can be exploited to trigger an infinite loop.
|
21-05-2019 - 16:29 | 20-02-2019 - 18:29 | |
| CVE-2018-20363 | 4.3 |
LibRaw::raw2image in libraw_cxx.cpp in LibRaw 0.19.1 has a NULL pointer dereference.
|
21-05-2019 - 16:29 | 22-12-2018 - 17:29 | |
| CVE-2018-5819 | 7.8 |
An error within the "parse_sinar_ia()" function (internal/dcraw_common.cpp) within LibRaw versions prior to 0.19.1 can be exploited to exhaust available CPU resources.
|
21-05-2019 - 16:29 | 20-02-2019 - 18:29 | |
| CVE-2018-20364 | 4.3 |
LibRaw::copy_bayer in libraw_cxx.cpp in LibRaw 0.19.1 has a NULL pointer dereference.
|
21-05-2019 - 16:29 | 22-12-2018 - 17:29 |