Security update for dcraw SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2022:1749-1 Final 1 1 2022-05-19T13:24:56Z current 2022-05-19T13:24:56Z 2022-05-19T13:24:56Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for dcraw This update for dcraw fixes the following issues: - CVE-2017-13735: Fixed a denial of service issue due to a floating point exception (bsc#1056170). - CVE-2017-14608: Fixed an invalid memory access that could lead to information disclosure or denial of service (bsc#1063798). - CVE-2018-19655: Fixed a buffer overflow that could lead to an application crash (bsc#1117896). - CVE-2018-5801: Fixed an invalid memory access that could lead to denial of service (bsc#1084690). - CVE-2018-5805: Fixed a buffer overflow that could lead to an application crash (bsc#1097973). - CVE-2018-5806: Fixed an invalid memory access that could lead to denial of service (bsc#1097974). - CVE-2018-19565: Fixed an invalid memory access that could lead to information disclosure or denial of service (bsc#1117622). - CVE-2018-19566: Fixed an invalid memory access that could lead to information disclosure or denial of service (bsc#1117517). - CVE-2018-19567: Fixed a denial of service issue due to a floating point exception (bsc#1117512). - CVE-2018-19568: Fixed a denial of service issue due to a floating point exception (bsc#1117436). - CVE-2021-3624: Fixed a buffer overflow that could lead to code execution or denial of service (bsc#1189642). Non-security fixes: - Updated to version 9.28.0. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2022-1749,SUSE-SLE-SDK-12-SP5-2022-1749,SUSE-SLE-WE-12-SP5-2022-1749 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2022/suse-su-20221749-1/ Link for SUSE-SU-2022:1749-1 https://lists.suse.com/pipermail/sle-security-updates/2022-May/011101.html E-Mail link for SUSE-SU-2022:1749-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1056170 SUSE Bug 1056170 https://bugzilla.suse.com/1063798 SUSE Bug 1063798 https://bugzilla.suse.com/1084690 SUSE Bug 1084690 https://bugzilla.suse.com/1097973 SUSE Bug 1097973 https://bugzilla.suse.com/1097974 SUSE Bug 1097974 https://bugzilla.suse.com/1117436 SUSE Bug 1117436 https://bugzilla.suse.com/1117512 SUSE Bug 1117512 https://bugzilla.suse.com/1117517 SUSE Bug 1117517 https://bugzilla.suse.com/1117622 SUSE Bug 1117622 https://bugzilla.suse.com/1117896 SUSE Bug 1117896 https://bugzilla.suse.com/1189642 SUSE Bug 1189642 https://www.suse.com/security/cve/CVE-2017-13735/ SUSE CVE CVE-2017-13735 page https://www.suse.com/security/cve/CVE-2017-14608/ SUSE CVE CVE-2017-14608 page https://www.suse.com/security/cve/CVE-2018-19565/ SUSE CVE CVE-2018-19565 page https://www.suse.com/security/cve/CVE-2018-19566/ SUSE CVE CVE-2018-19566 page https://www.suse.com/security/cve/CVE-2018-19567/ SUSE CVE CVE-2018-19567 page https://www.suse.com/security/cve/CVE-2018-19568/ SUSE CVE CVE-2018-19568 page https://www.suse.com/security/cve/CVE-2018-19655/ SUSE CVE CVE-2018-19655 page https://www.suse.com/security/cve/CVE-2018-5801/ SUSE CVE CVE-2018-5801 page https://www.suse.com/security/cve/CVE-2018-5805/ SUSE CVE CVE-2018-5805 page https://www.suse.com/security/cve/CVE-2018-5806/ SUSE CVE CVE-2018-5806 page https://www.suse.com/security/cve/CVE-2021-3624/ SUSE CVE CVE-2021-3624 page SUSE Linux Enterprise Software Development Kit 12 SP5 SUSE Linux Enterprise Workstation Extension 12 SP5 dcraw-9.28.0-3.3.1 dcraw-lang-9.28.0-3.3.1 dcraw-9.28.0-3.3.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP5 dcraw-9.28.0-3.3.1 as a component of SUSE Linux Enterprise Workstation Extension 12 SP5 dcraw-lang-9.28.0-3.3.1 as a component of SUSE Linux Enterprise Workstation Extension 12 SP5 There is a floating point exception in the kodak_radc_load_raw function in dcraw_common.cpp in LibRaw 0.18.2. It will lead to a remote denial of service attack. CVE-2017-13735 SUSE Linux Enterprise Software Development Kit 12 SP5:dcraw-9.28.0-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP5:dcraw-9.28.0-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP5:dcraw-lang-9.28.0-3.3.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20221749-1/ https://www.suse.com/security/cve/CVE-2017-13735.html CVE-2017-13735 https://bugzilla.suse.com/1056170 SUSE Bug 1056170 https://bugzilla.suse.com/1060321 SUSE Bug 1060321 In LibRaw through 0.18.4, an out of bounds read flaw related to kodak_65000_load_raw has been reported in dcraw/dcraw.c and internal/dcraw_common.cpp. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash. CVE-2017-14608 SUSE Linux Enterprise Software Development Kit 12 SP5:dcraw-9.28.0-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP5:dcraw-9.28.0-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP5:dcraw-lang-9.28.0-3.3.1 moderate 2.1 AV:L/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20221749-1/ https://www.suse.com/security/cve/CVE-2017-14608.html CVE-2017-14608 https://bugzilla.suse.com/1063798 SUSE Bug 1063798 A buffer over-read in crop_masked_pixels in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code or leak private information. CVE-2018-19565 SUSE Linux Enterprise Software Development Kit 12 SP5:dcraw-9.28.0-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP5:dcraw-9.28.0-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP5:dcraw-lang-9.28.0-3.3.1 low To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20221749-1/ https://www.suse.com/security/cve/CVE-2018-19565.html CVE-2018-19565 https://bugzilla.suse.com/1117622 SUSE Bug 1117622 A heap buffer over-read in parse_tiff_ifd in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code or leak private information. CVE-2018-19566 SUSE Linux Enterprise Software Development Kit 12 SP5:dcraw-9.28.0-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP5:dcraw-9.28.0-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP5:dcraw-lang-9.28.0-3.3.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20221749-1/ https://www.suse.com/security/cve/CVE-2018-19566.html CVE-2018-19566 https://bugzilla.suse.com/1117517 SUSE Bug 1117517 A floating point exception in parse_tiff_ifd in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code. CVE-2018-19567 SUSE Linux Enterprise Software Development Kit 12 SP5:dcraw-9.28.0-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP5:dcraw-9.28.0-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP5:dcraw-lang-9.28.0-3.3.1 low To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20221749-1/ https://www.suse.com/security/cve/CVE-2018-19567.html CVE-2018-19567 https://bugzilla.suse.com/1117512 SUSE Bug 1117512 A floating point exception in kodak_radc_load_raw in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code. CVE-2018-19568 SUSE Linux Enterprise Software Development Kit 12 SP5:dcraw-9.28.0-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP5:dcraw-9.28.0-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP5:dcraw-lang-9.28.0-3.3.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20221749-1/ https://www.suse.com/security/cve/CVE-2018-19568.html CVE-2018-19568 https://bugzilla.suse.com/1117436 SUSE Bug 1117436 A stack-based buffer overflow in the find_green() function of dcraw through 9.28, as used in ufraw-batch and many other products, may allow a remote attacker to cause a control-flow hijack, denial-of-service, or unspecified other impact via a maliciously crafted raw photo file. CVE-2018-19655 SUSE Linux Enterprise Software Development Kit 12 SP5:dcraw-9.28.0-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP5:dcraw-9.28.0-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP5:dcraw-lang-9.28.0-3.3.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20221749-1/ https://www.suse.com/security/cve/CVE-2018-19655.html CVE-2018-19655 https://bugzilla.suse.com/1117896 SUSE Bug 1117896 An error within the "LibRaw::unpack()" function (src/libraw_cxx.cpp) in LibRaw versions prior to 0.18.7 can be exploited to trigger a NULL pointer dereference. CVE-2018-5801 SUSE Linux Enterprise Software Development Kit 12 SP5:dcraw-9.28.0-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP5:dcraw-9.28.0-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP5:dcraw-lang-9.28.0-3.3.1 low To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20221749-1/ https://www.suse.com/security/cve/CVE-2018-5801.html CVE-2018-5801 https://bugzilla.suse.com/1084690 SUSE Bug 1084690 A boundary error within the "quicktake_100_load_raw()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.8 can be exploited to cause a stack-based buffer overflow and subsequently cause a crash. CVE-2018-5805 SUSE Linux Enterprise Software Development Kit 12 SP5:dcraw-9.28.0-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP5:dcraw-9.28.0-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP5:dcraw-lang-9.28.0-3.3.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20221749-1/ https://www.suse.com/security/cve/CVE-2018-5805.html CVE-2018-5805 https://bugzilla.suse.com/1097973 SUSE Bug 1097973 An error within the "leaf_hdr_load_raw()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.8 can be exploited to trigger a NULL pointer dereference. CVE-2018-5806 SUSE Linux Enterprise Software Development Kit 12 SP5:dcraw-9.28.0-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP5:dcraw-9.28.0-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP5:dcraw-lang-9.28.0-3.3.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20221749-1/ https://www.suse.com/security/cve/CVE-2018-5806.html CVE-2018-5806 https://bugzilla.suse.com/1097974 SUSE Bug 1097974 There is an integer overflow vulnerability in dcraw. When the victim runs dcraw with a maliciously crafted X3F input image, arbitrary code may be executed in the victim's system. CVE-2021-3624 SUSE Linux Enterprise Software Development Kit 12 SP5:dcraw-9.28.0-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP5:dcraw-9.28.0-3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP5:dcraw-lang-9.28.0-3.3.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2022/suse-su-20221749-1/ https://www.suse.com/security/cve/CVE-2021-3624.html CVE-2021-3624 https://bugzilla.suse.com/1189642 SUSE Bug 1189642