Download
| Alert*
oval:org.secpod.oval:def:106670
LibRaw is installed oval:org.secpod.oval:def:1800299 An error within the "LibRaw::xtrans_interpolate" function can be exploited to cause an invalid read memory access and subsequently cause a crash via a specially crafted TIFF image. Fixed In Version:¶ LibRaw 0.18.6 oval:org.secpod.oval:def:1800212 libraw is installed oval:org.secpod.oval:def:1800833 CVE-2017-13735: There is a floating point exception in the kodak_radc_load_raw function in dcraw_common.cpp in LibRaw 0.18.2. It will lead to a remote denial of service attack. oval:org.secpod.oval:def:1801354 CVE-2018-20363: LibRaw::raw2image in libraw_cxx.cpp in LibRaw 0.19.1 has a NULL pointer dereference. oval:org.secpod.oval:def:1800211 CVE-2017-6886: Memory corruption in the parse_tiff_ifd An error within the "parse_tiff_ifd" function in LibRaw versions before 0.18.2 can be exploited to corrupt memory. Fixed In Version LibRaw 0.18.2 oval:org.secpod.oval:def:503582 GNOME is the default desktop environment of Red Hat Enterprise Linux. Security Fix: * gnome-shell: partial lock screen bypass For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References ... oval:org.secpod.oval:def:105911 LibRaw is a library for reading RAW files obtained from digital photo cameras . LibRaw is based on the source codes of the dcraw utility, where part of drawbacks have already been eliminated and part will be fixed in future. oval:org.secpod.oval:def:114635 LibRaw is a library for reading RAW files obtained from digital photo cameras . LibRaw is based on the source codes of the dcraw utility, where part of drawbacks have already been eliminated and part will be fixed in future. oval:org.secpod.oval:def:114677 LibRaw is a library for reading RAW files obtained from digital photo cameras . LibRaw is based on the source codes of the dcraw utility, where part of drawbacks have already been eliminated and part will be fixed in future. oval:org.secpod.oval:def:1504543 accountsservice [0.6.50-7] - version bump to prevent future update path introduced by RHBA-2019:45836 Resolves: #1721562 colord [1.3.4-2] - Downgrade a trivial warning to a debug statement - Resolves: #1421231 control-center [3.28.1-6] - Calculate better extents for the configured displays arrangeme ... oval:org.secpod.oval:def:205479 GNOME is the default desktop environment of Red Hat Enterprise Linux. Security Fix: * gnome-shell: partial lock screen bypass For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References ... oval:org.secpod.oval:def:118602 LibRaw is a library for reading RAW files obtained from digital photo cameras . LibRaw is based on the source codes of the dcraw utility, where part of drawbacks have already been eliminated and part will be fixed in future. oval:org.secpod.oval:def:1801790 LibRaw before 0.20-RC1 lacks a thumbnail size range check. This affects decoders/unpack_thumb.cpp, postprocessing/mem_image.cpp, and utils/thumb_utils.cpp. For example, malloc occurs without validating T.tlength. oval:org.secpod.oval:def:118454 LibRaw is a library for reading RAW files obtained from digital photo cameras . LibRaw is based on the source codes of the dcraw utility, where part of drawbacks have already been eliminated and part will be fixed in future. oval:org.secpod.oval:def:108884 LibRaw is a library for reading RAW files obtained from digital photo cameras . LibRaw is based on the source codes of the dcraw utility, where part of drawbacks have already been eliminated and part will be fixed in future. oval:org.secpod.oval:def:113478 LibRaw is a library for reading RAW files obtained from digital photo cameras . LibRaw is based on the source codes of the dcraw utility, where part of drawbacks have already been eliminated and part will be fixed in future. oval:org.secpod.oval:def:109805 LibRaw is a library for reading RAW files obtained from digital photo cameras . LibRaw is based on the source codes of the dcraw utility, where part of drawbacks have already been eliminated and part will be fixed in future. oval:org.secpod.oval:def:1800494 CVE-2017-6886: Memory corruption in the parse_tiff_ifd An error within the "parse_tiff_ifd" function in LibRaw versions before 0.18.2 can be exploited to corrupt memory. Fixed In Version: LibRaw 0.18.2 oval:org.secpod.oval:def:113254 LibRaw is a library for reading RAW files obtained from digital photo cameras . LibRaw is based on the source codes of the dcraw utility, where part of drawbacks have already been eliminated and part will be fixed in future. oval:org.secpod.oval:def:109106 LibRaw is a library for reading RAW files obtained from digital photo cameras . LibRaw is based on the source codes of the dcraw utility, where part of drawbacks have already been eliminated and part will be fixed in future. oval:org.secpod.oval:def:113600 LibRaw is a library for reading RAW files obtained from digital photo cameras . LibRaw is based on the source codes of the dcraw utility, where part of drawbacks have already been eliminated and part will be fixed in future. oval:org.secpod.oval:def:113167 LibRaw is a library for reading RAW files obtained from digital photo cameras . LibRaw is based on the source codes of the dcraw utility, where part of drawbacks have already been eliminated and part will be fixed in future. oval:org.secpod.oval:def:114534 LibRaw is a library for reading RAW files obtained from digital photo cameras . LibRaw is based on the source codes of the dcraw utility, where part of drawbacks have already been eliminated and part will be fixed in future. oval:org.secpod.oval:def:113165 LibRaw is a library for reading RAW files obtained from digital photo cameras . LibRaw is based on the source codes of the dcraw utility, where part of drawbacks have already been eliminated and part will be fixed in future. oval:org.secpod.oval:def:109981 LibRaw is a library for reading RAW files obtained from digital photo cameras . LibRaw is based on the source codes of the dcraw utility, where part of drawbacks have already been eliminated and part will be fixed in future. oval:org.secpod.oval:def:1800635 CVE-2017-6886: Memory corruption in the parse_tiff_ifd An error within the "parse_tiff_ifd" function in LibRaw versions before 0.18.2 can be exploited to corrupt memory. Fixed In Version: LibRaw 0.18.2 oval:org.secpod.oval:def:114485 LibRaw is a library for reading RAW files obtained from digital photo cameras . LibRaw is based on the source codes of the dcraw utility, where part of drawbacks have already been eliminated and part will be fixed in future. oval:org.secpod.oval:def:1800498 An error within the "LibRaw::xtrans_interpolate" function can be exploited to cause an invalid read memory access and subsequently cause a crash via a specially crafted TIFF image. Fixed In Version: LibRaw 0.18.6 oval:org.secpod.oval:def:113809 LibRaw is a library for reading RAW files obtained from digital photo cameras . LibRaw is based on the source codes of the dcraw utility, where part of drawbacks have already been eliminated and part will be fixed in future. oval:org.secpod.oval:def:114372 LibRaw is a library for reading RAW files obtained from digital photo cameras . LibRaw is based on the source codes of the dcraw utility, where part of drawbacks have already been eliminated and part will be fixed in future. oval:org.secpod.oval:def:115697 LibRaw is a library for reading RAW files obtained from digital photo cameras . LibRaw is based on the source codes of the dcraw utility, where part of drawbacks have already been eliminated and part will be fixed in future. oval:org.secpod.oval:def:1504532 accountsservice [0.6.50-8] - Dont set HasNoUsers=true if realmd has providers Related: #1750516 appstream-data [8-20191129] - Regenerate the RHEL metadata to include the latest evince changes - Resolves: #1768461 clutter [1.26.2-8] - rebuild to get the new in 8.2.0 - plus address #1785233 evince [3. ... oval:org.secpod.oval:def:1701581 In LibRaw, an out-of-bounds read vulnerability exists within the 'LibRaw::adobe_copy_pixel' function when reading data from the image file. A flaw was found in LibRaw. A heap-buffer-overflow in raw2image_ex caused by a maliciously crafted file may lead to application crash oval:org.secpod.oval:def:125586 LibRaw is a library for reading RAW files obtained from digital photo cameras . LibRaw is based on the source codes of the dcraw utility, where part of drawbacks have already been eliminated and part will be fixed in future. oval:org.secpod.oval:def:2600435 LibRaw is a library for reading RAW files obtained from digital photo cameras . oval:org.secpod.oval:def:125409 LibRaw is a library for reading RAW files obtained from digital photo cameras . LibRaw is based on the source codes of the dcraw utility, where part of drawbacks have already been eliminated and part will be fixed in future. oval:org.secpod.oval:def:1701631 Buffer Overflow vulnerability in LibRaw::stretch function in libraw\src\postprocessing\aspect_ratio.cpp. In LibRaw, there is an out-of-bounds write vulnerability within the "new_node" function that can be triggered via a crafted X3F file. In LibRaw, an out-of-bounds read vulnerability exists within ... oval:org.secpod.oval:def:509108 LibRaw is a library for reading RAW files obtained from digital photo cameras . Security Fix: LibRaw: stack buffer overflow in LibRaw_buffer_datastream::gets in src/libraw_datastream.cpp For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other relate ... oval:org.secpod.oval:def:68025 GNOME is the default desktop environment of Red Hat Enterprise Linux. The following packages have been upgraded to a later upstream version: gnome-remote-desktop , pipewire , vte291 , webkit2gtk3 , xdg-desktop-portal , xdg-desktop-portal-gtk . Security Fix: * webkitgtk: Multiple security issues * ... oval:org.secpod.oval:def:1504515 dleyna-renderer [0.6.0-3] - Add a manual Resolves: #1612579 frei0r-plugins [1.6.1-7] - Rebuild with newer annobin to fix rpmdiff problems - Fix the build with a newer opencv - Resolves: rhbz#1703994 gdm [3.28.3-34] - Fix file descriptor leak Resolves: #1877853 [3.28.3-33] - Fix problem with Xorg fal ... oval:org.secpod.oval:def:2500376 GNOME is the default desktop environment of AlmaLinux. oval:org.secpod.oval:def:4500064 GNOME is the default desktop environment of Rocky Linux. The following packages have been upgraded to a later upstream version: gdm , webkit2gtk3 . For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page li ... oval:org.secpod.oval:def:1505266 accountsservice [0.6.55-2] - Add support for user templates so user can specify default session Resolves: #1812788 gdm [40.0-14] - Fix XDMCP Resolves: #2004170 - Fix crash at shutdown Related: #2004170 [40.0-13] - Disable Wayland on HyperV - Fix Xorg fallback Related: #1998989 [40.0-12] - Redisable ... oval:org.secpod.oval:def:506478 GNOME is the default desktop environment of Red Hat Enterprise Linux. The following packages have been upgraded to a later upstream version: gdm , webkit2gtk3 . Security Fix: * webkitgtk: Use-after-free in AudioSourceProviderGStreamer leading to arbitrary code execution * LibRaw: Stack buffer over ... oval:org.secpod.oval:def:2500129 GNOME is the default desktop environment of AlmaLinux. oval:org.secpod.oval:def:504769 GNOME is the default desktop environment of Red Hat Enterprise Linux. The following packages have been upgraded to a later upstream version: gnome-remote-desktop , pipewire , vte291 , webkit2gtk3 , xdg-desktop-portal , xdg-desktop-portal-gtk . Security Fix: * webkitgtk: Multiple security issues * ... |