[ubuntu/focal-security] libraw 0.19.5-1ubuntu1.2 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Mon Jun 5 13:55:01 UTC 2023
libraw (0.19.5-1ubuntu1.2) focal-security; urgency=medium
* SECURITY UPDATE: denial of service via buffer overflow
- debian/patches/CVE-2021-32142.patch: check for input buffer size on
datastream::gets in src/libraw_datastream.cpp.
- CVE-2021-32142
* SECURITY UPDATE: heap-buffer-overflow in raw2image_ex()
- debian/patches/CVE-2023-1729.patch: do not set shrink flag for 3/4
component images in src/libraw_cxx.cpp.
- CVE-2023-1729
Date: 2023-06-01 18:32:35.039174+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/libraw/0.19.5-1ubuntu1.2
-------------- next part --------------
Sorry, changesfile not available.
More information about the Focal-changes
mailing list