CVE-2018-5801
6.5
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Exploitability: 2.8 / Impact: 3.6
Source: NVD
Description
An error within the "LibRaw::unpack()" function (src/libraw_cxx.cpp) in LibRaw versions prior to 0.18.7 can be exploited to trigger a NULL pointer dereference.
Affected (8)
Products: Libraw: Libraw · Redhat: Enterprise Linux Desktop, Enterprise Linux Server, Enterprise Linux Workstation · Canonical: Ubuntu Linux · +1 more
Show all products
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Version 7.0 | |
| Version 7.0 | |
| Version 7.0 |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Version 14.04 |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Version 8.0 |
Related CWEs
References (14)
Source: PSIRT-CNA@flexerasoftware.com
Third Party Advisory
Source: PSIRT-CNA@flexerasoftware.com
Release Notes
Source: PSIRT-CNA@flexerasoftware.com
Patch
Source: PSIRT-CNA@flexerasoftware.com
Mailing ListThird Party Advisory
Source: PSIRT-CNA@flexerasoftware.com
Third Party Advisory
Source: PSIRT-CNA@flexerasoftware.com
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Release Notes
Source: af854a3a-2127-422b-91ae-364da2661108
Patch
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Timeline
No history available yet.