CVE-2018-19655

A stack-based buffer overflow in the find_green() function of dcraw through 9.28, as used in ufraw-batch and many other products, may allow a remote attacker to cause a control-flow hijack, denial-of-service, or unspecified other impact via a maliciously crafted raw photo file.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:dcraw_project:dcraw:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:o:suse:suse_linux_enterprise_server:11:sp4:*:*:*:*:*:*
cpe:2.3:o:suse:suse_linux_enterprise_server:12:sp3:*:*:*:*:*:*
cpe:2.3:o:suse:suse_linux_enterprise_server:12:sp4:*:*:*:*:*:*
cpe:2.3:o:suse:suse_linux_enterprise_desktop:12:sp3:*:*:*:*:*:*
cpe:2.3:o:suse:suse_linux_enterprise_desktop:12:sp4:*:*:*:*:*:*

Information

Published : 2018-11-28 21:29

Updated : 2020-08-24 10:37


NVD link : CVE-2018-19655

Mitre link : CVE-2018-19655


JSON object : View

CWE
CWE-787

Out-of-bounds Write

Advertisement

dedicated server usa

Products Affected

suse

  • suse_linux_enterprise_server
  • suse_linux_enterprise_desktop

dcraw_project

  • dcraw