๐ LibRaw up to 0.20.0 identify.cpp identify_process_dng_fields stack-based overflow
๐ก Newskategorie: Sicherheitslรผcken
๐ Quelle: vuldb.com
A vulnerability, which was classified as critical, has been found in LibRaw up to 0.20.0 (Image Processing Software). This issue affects the function LibRaw::identify_process_dng_fields
of the file identify.cpp. Upgrading to version 0.20.1 eliminates this vulnerability. Applying a patch is able to eliminate this problem. The bugfix is ready for download at github.com. The best possible mitigation is suggested to be upgrading to the latest version. ...