Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
[oCERT-2015-006] dcraw input sanitization errors
May 11 2015 01:59PM
Andrea Barisani (lcars ocert org)
#2015-006 dcraw input sanitization errors
The dcraw photo decoder is an open source project for raw image parsing.
The dcraw tool, as well as several other projects re-using its code, suffers
from an integer overflow condition which lead to a buffer overflow. The
[ more ]
Copyright 2010, SecurityFocus