Publishing details
Changelog
libraw (0.18.8-1ubuntu0.4) bionic-security; urgency=medium
* SECURITY UPDATE: missing thumbnail size range checks
- debian/patches/CVE-2020-15503.patch: add checks to
libraw/libraw_const.h, src/libraw_cxx.cpp.
- CVE-2020-15503
* SECURITY UPDATE: out-of-bounds write via X3F file
- debian/patches/CVE-2020-35530.patch: check huffman tree size in
internal/libraw_x3f.cpp.
- CVE-2020-35530
* SECURITY UPDATE: out-of-bounds read in get_huffman_diff()
- debian/patches/CVE-2020-35531.patch: check for data offset limit in
internal/libraw_x3f.cpp.
- CVE-2020-35531
* SECURITY UPDATE: out-of-bounds read via a large row_stride field
- debian/patches/CVE-2020-35532.patch: check for data offset limit in
internal/libraw_x3f.cpp.
- CVE-2020-35532
* SECURITY UPDATE: out-of-bounds read in adobe_copy_pixel()
- debian/patches/CVE-2020-35533.patch: more room for ljpeg row in
dcraw/dcraw.c.
- CVE-2020-35533
-- Marc Deslauriers <email address hidden> Fri, 04 Nov 2022 14:02:18 -0400
Builds
Built packages
-
libraw-bin
raw image decoder library (tools)
-
libraw-bin-dbgsym
debug symbols for libraw-bin
-
libraw-dev
raw image decoder library (development files)
-
libraw-doc
raw image decoder library (documentation)
-
libraw16
raw image decoder library
-
libraw16-dbgsym
debug symbols for libraw16
Package files