An off-by-one error within the "LibRaw::kodak_ycbcr_load_raw()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.7 can be exploited to cause a heap-based buffer overflow and subsequently cause a crash.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: flexera

Published: 2018-12-07T22:00:00

Updated: 2024-08-05T05:47:54.579Z

Reserved: 2018-01-19T00:00:00

Link: CVE-2018-5800

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-12-07T22:29:00.443

Modified: 2024-11-21T04:09:25.927

Link: CVE-2018-5800

cve-icon Redhat

Severity : Low

Publid Date: 2018-01-30T00:00:00Z

Links: CVE-2018-5800 - Bugzilla