CVE-2018-5800

MEDIUM

LibRaw <0.18.7 - Buffer Overflow

Title source: llm

Description

An off-by-one error within the "LibRaw::kodak_ycbcr_load_raw()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.7 can be exploited to cause a heap-based buffer overflow and subsequently cause a crash.

References (8)

[Release Notes] https://github.com/LibRaw/LibRaw/blob/master/Changelog.txt

[Third Party Advisory] https://secuniaresearch.flexerasoftware.com/secunia_research/2018-1/

[Third Party Advisory] https://secuniaresearch.flexerasoftware.com/advisories/79000/

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/104663

[Third Party Advisory] https://access.redhat.com/errata/RHSA-2018:3065

[Third Party Advisory] https://usn.ubuntu.com/3615-1/

[Mailing List, Third Party Advisory] https://lists.debian.org/debian-lts-announce/2019/03/msg00036.html

[Patch, Vendor Advisory] https://github.com/LibRaw/LibRaw/commit/8682ad204392b914ab1cc6ebcca9c27c19c1a4b4

View Patch ZIP pw:eip

Scores

CVSS v3 6.5

EPSS 0.0148

EPSS Percentile 81.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Details

CWE

CWE-193 CWE-787

Status published

Products (8)

canonical/ubuntu_linux 14.04

canonical/ubuntu_linux 16.04

canonical/ubuntu_linux 17.10

debian/debian_linux 8.0

libraw/libraw < 0.18.7

redhat/enterprise_linux_desktop 7.0

redhat/enterprise_linux_server 7.0

redhat/enterprise_linux_workstation 7.0

Published Dec 07, 2018

Tracked Since Feb 18, 2026