An integer overflow error within the "identify()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.12 can be exploited to trigger a division by zero via specially crafted NOKIARAW file (Note: This vulnerability is caused due to an incomplete fix of CVE-2018-5804).
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: flexera

Published: 2018-12-07T22:00:00

Updated: 2024-08-05T05:47:56.117Z

Reserved: 2018-01-19T00:00:00

Link: CVE-2018-5816

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-12-07T22:29:01.723

Modified: 2024-11-21T04:09:28.087

Link: CVE-2018-5816

cve-icon Redhat

Severity : Moderate

Publid Date: 2018-07-22T00:00:00Z

Links: CVE-2018-5816 - Bugzilla