CVE-2018-5804

MEDIUM

LibRaw <0.18.8 - Use After Free

Title source: llm

Description

A type confusion error within the "identify()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.8 can be exploited to trigger a division by zero.

References (4)

[Release Notes] https://github.com/LibRaw/LibRaw/blob/master/Changelog.txt

[Patch] https://github.com/LibRaw/LibRaw/commit/9f26ce37f5be86ea11bfc6831366558650b1f6ff

View Patch ZIP pw:eip

[Third Party Advisory] https://secuniaresearch.flexerasoftware.com/advisories/81000/

[Third Party Advisory] https://secuniaresearch.flexerasoftware.com/secunia_research/2018-3/

Scores

CVSS v3 6.5

EPSS 0.0031

EPSS Percentile 54.2%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Classification

CWE

CWE-369 CWE-704

Status published

Affected Products (1)

libraw/libraw < 0.18.8

Timeline

Published Dec 07, 2018

Tracked Since Feb 18, 2026