UbuntuUpdates.org

Package "libraw"

Name: libraw

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • raw image decoder library (development files)
  • raw image decoder library (documentation)
  • raw image decoder library

Latest version: 0.20.2-2ubuntu2.22.04.1
Release: jammy (22.04)
Level: updates
Repository: main

Links



Other versions of "libraw" in Jammy

Repository Area Version
base main 0.20.2-2ubuntu2
base universe 0.20.2-2ubuntu2
security main 0.20.2-2ubuntu2.22.04.1
security universe 0.20.2-2ubuntu2.22.04.1
updates universe 0.20.2-2ubuntu2.22.04.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 0.20.2-2ubuntu2.22.04.1 2023-06-05 16:07:24 UTC

  libraw (0.20.2-2ubuntu2.22.04.1) jammy-security; urgency=medium

  * SECURITY UPDATE: denial of service via buffer overflow
    - debian/patches/CVE-2021-32142.patch: check for input buffer size on
      datastream::gets in src/libraw_datastream.cpp.
    - CVE-2021-32142
  * SECURITY UPDATE: heap-buffer-overflow in raw2image_ex()
    - debian/patches/CVE-2023-1729.patch: do not set shrink flag for 3/4
      component images in src/preprocessing/raw2image.cpp.
    - CVE-2023-1729

 -- Marc Deslauriers <email address hidden> Thu, 01 Jun 2023 13:03:58 -0400

CVE-2021-32142 Buffer Overflow vulnerability in LibRaw linux/unix v0.20.0 allows attacker to escalate privileges via the LibRaw_buffer_datastream::gets(char*, int)
CVE-2023-1729 A flaw was found in LibRaw. A heap-buffer-overflow in raw2image_ex() caused by a maliciously crafted file may lead to an application crash.



About   -   Send Feedback to @ubuntu_updates