BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
[oCERT-2015-006] dcraw input sanitization errors May 11 2015 01:59PM
Andrea Barisani (lcars ocert org)

#2015-006 dcraw input sanitization errors

Description:

The dcraw photo decoder is an open source project for raw image parsing.

The dcraw tool, as well as several other projects re-using its code, suffers
from an integer overflow condition which lead to a buffer overflow. The
vulnerability conce...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus