LibRaw CVE-2013-2126 Multiple Memory Corruption Vulnerabilities

LibRaw is prone to multiple memory-corruption vulnerabilities.

Local attackers can exploit these issues to run arbitrary code with the privilege of the user running an affected application.

This issue is fixed in LibRaw 0.15.2.

Note: The issue described by CVE-2013-2127 has been moved to BID 60321 (LibRaw CVE-2013-2127 Local Buffer Overflow Vulnerability) to better document it.


 

Privacy Statement
Copyright 2010, SecurityFocus