Package "libraw-bin"

Name: libraw-bin


raw image decoder library (tools)

Latest version: 0.20.2-2ubuntu2.22.04.1
Release: jammy (22.04)
Level: updates
Repository: universe
Head package: libraw
Homepage: https://www.libraw.org


Download "libraw-bin"

Other versions of "libraw-bin" in Jammy

Repository Area Version
base universe 0.20.2-2ubuntu2
security universe 0.20.2-2ubuntu2.22.04.1


Version: 0.20.2-2ubuntu2.22.04.1 2023-06-05 16:07:27 UTC

  libraw (0.20.2-2ubuntu2.22.04.1) jammy-security; urgency=medium

  * SECURITY UPDATE: denial of service via buffer overflow
    - debian/patches/CVE-2021-32142.patch: check for input buffer size on
      datastream::gets in src/libraw_datastream.cpp.
    - CVE-2021-32142
  * SECURITY UPDATE: heap-buffer-overflow in raw2image_ex()
    - debian/patches/CVE-2023-1729.patch: do not set shrink flag for 3/4
      component images in src/preprocessing/raw2image.cpp.
    - CVE-2023-1729

 -- Marc Deslauriers <email address hidden> Thu, 01 Jun 2023 13:03:58 -0400

CVE-2021-32142 Buffer Overflow vulnerability in LibRaw linux/unix v0.20.0 allows attacker to escalate privileges via the LibRaw_buffer_datastream::gets(char*, int)
CVE-2023-1729 A flaw was found in LibRaw. A heap-buffer-overflow in raw2image_ex() caused by a maliciously crafted file may lead to an application crash.

About   -   Send Feedback to @ubuntu_updates