Package "libraw"
| Name: |
libraw
|
Description: |
This package is just an umbrella for a group of other packages,
it has no description.
Description samples from packages in group:
- raw image decoder library (development files)
- raw image decoder library (documentation)
- raw image decoder library
|
| Latest version: |
0.21.2-2.1ubuntu0.24.04.1 |
| Release: |
noble (24.04) |
| Level: |
security |
| Repository: |
main |
Links
Other versions of "libraw" in Noble
Packages in group
Deleted packages are displayed in grey.
Changelog
|
libraw (0.21.2-2.1ubuntu0.24.04.1) noble-security; urgency=medium
* SECURITY UPDATE: Out of bounds read
- debian/patches/CVE-2025-43961-CVE-2025-43962.patch: Check
size of head array values
- CVE-2025-43961
- CVE-2025-43962
- debian/patches/CVE-2025-43963.patch: check split_col/split_row
values in phase_one_correct
- CVE-2025-43963
* SECURITY UPDATE: Malformed input
- debian/patches/CVE-2025-43964.patch: additional checks in PhaseOne
correction tag 0x412 processing
- CVE-2025-43964
-- Bruce Cable <email address hidden> Mon, 28 Apr 2025 14:02:15 +1000
|
| CVE-2025-43961 |
In LibRaw before 0.21.4, metadata/tiff.cpp has an out-of-bounds read in the Fujifilm 0xf00c tag parser. |
| CVE-2025-43962 |
In LibRaw before 0.21.4, phase_one_correct in decoders/load_mfbacks.cpp has out-of-bounds reads for tag 0x412 processing, related to large w0 or w1 v |
| CVE-2025-43963 |
In LibRaw before 0.21.4, phase_one_correct in decoders/load_mfbacks.cpp allows out-of-buffer access because split_col and split_row values are not ch |
| CVE-2025-43964 |
In LibRaw before 0.21.4, tag 0x412 processing in phase_one_correct in decoders/load_mfbacks.cpp does not enforce minimum w0 and w1 values. |
|
About
-
Send Feedback to @ubuntu_updates
