[Secure-testing-team] Bug#864168: CVE-2015-8366: Index overflow in smal_decode_segment

Moritz Muehlenhoff jmm at debian.org
Sun Jun 4 17:20:38 UTC 2017


Package: dcraw
Severity: important
Tags: security

dcraw embeds a copy of libraw, which is affected by an integer
overflow in smal_decode_segment().

Patch is here: https://github.com/LibRaw/LibRaw/commit/89d065424f09b788f443734d44857289489ca9e2

Cheers,
        Moritz



More information about the Secure-testing-team mailing list