CVE-2015-3885

Name	CVE-2015-3885
Description	Integer overflow in the ljpeg_start function in dcraw 7.00 and earlier ...
Source	CVE (at NVD; CERT, ENISA, LWN, oss-sec, fulldisc, Debian ELTS, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
References	DLA-228-1, DLA-243-1, DSA-3692-1
Debian Bugs	785019, 786688, 786783, 786785, 786788, 786790, 786792, 792299

Vulnerable and fixed packages

The table below lists information on source packages.

Source Package	Release	Version	Status
darktable (PTS)	bullseye	3.4.1-5	fixed
	bookworm	4.2.1-4	fixed
	trixie	5.0.1-2	fixed
	forky, sid	5.4.1-1	fixed
dcraw (PTS)	bullseye	9.28-2	fixed
	bookworm	9.28-3	fixed
	forky, sid, trixie	9.28-8	fixed
exactimage (PTS)	bullseye	1.0.2-8	fixed
	bookworm	1.0.2-11	fixed
	trixie	1.2.1-2	fixed
	forky, sid	1.2.1-3	fixed
freeimage (PTS)	bullseye (security), bullseye	3.18.0+ds2-6+deb11u1	fixed
	bookworm, bookworm (security)	3.18.0+ds2-9+deb12u1	fixed
	forky, sid, trixie	3.18.0+ds2-11	fixed
kodi (PTS)	bullseye	2:19.1+dfsg2-2+deb11u1	fixed
	bullseye (security)	2:19.1+dfsg2-2+deb11u2	fixed
	bookworm	2:20.1+dfsg-1	fixed
	trixie	2:21.2+dfsg-4	fixed
	sid	2:21.3+dfsg-1	fixed
libraw (PTS)	bullseye	0.20.2-1+deb11u1	fixed
	bullseye (security)	0.20.2-1+deb11u2	fixed
	bookworm	0.20.2-2.1+deb12u1	fixed
	trixie	0.21.4-2	fixed
	forky, sid	0.21.5b-1	fixed
rawtherapee (PTS)	bullseye	5.8-3	fixed
	bookworm	5.9-1	fixed
	trixie	5.11-2	fixed
	forky, sid	5.12-2	fixed

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Origin	Debian Bugs
darktable	source	jessie	1.4.2-1+deb8u1
darktable	source	(unstable)	1.6.7-1		786792
dcraw	source	(unstable)	9.26-1		785019
exactimage	source	squeeze	0.8.1-3+deb6u4	DLA-228-1
exactimage	source	wheezy	0.8.5-5+deb7u4
exactimage	source	jessie	0.8.9-7+deb8u1
exactimage	source	(unstable)	0.9.1-5		786785
freeimage	source	jessie	3.15.4-4.2+deb8u1	DSA-3692-1
freeimage	source	(unstable)	3.15.4-6		786790
kodi	source	(unstable)	16.0+dfsg1-1		792299
libraw	source	squeeze	0.9.1-1+deb6u1	DLA-243-1
libraw	source	wheezy	0.14.6-2+deb7u1
libraw	source	jessie	0.16.0-9+deb8u1
libraw	source	(unstable)	0.16.2-1		786788
rawstudio	source	(unstable)	(unfixed)
rawtherapee	source	wheezy	4.0.9-4+deb7u1
rawtherapee	source	jessie	4.2-1+deb8u1
rawtherapee	source	(unstable)	4.2-2
ufraw	source	jessie	0.20-2+deb8u1
ufraw	source	(unstable)	0.20-3		786783
xbmc	source	(unstable)	2:13.2+dfsg1-5		786688

Notes

[jessie] - dcraw <no-dsa> (Minor issue)
[wheezy] - dcraw <no-dsa> (Minor issue)
[squeeze] - dcraw <no-dsa> (Minor issue)
[wheezy] - ufraw <no-dsa> (Minor issue)
[squeeze] - ufraw <no-dsa> (Minor issue)
[squeeze] - libraw <no-dsa> (Minor issue)
[squeeze] - rawtherapee <no-dsa> (Minor issue)
[wheezy] - rawstudio <no-dsa> (Minor issue)
[squeeze] - rawstudio <no-dsa> (Minor issue)
[jessie] - xbmc <no-dsa> (Minor issue)
[wheezy] - xbmc <no-dsa> (Minor issue)
[squeeze] - exactimage <no-dsa> (Minor issue)
[wheezy] - freeimage <no-dsa> (Minor issue)
[squeeze] - freeimage <no-dsa> (Minor issue)
[wheezy] - darktable <no-dsa> (Minor issue)
http://www.ocert.org/advisories/ocert-2015-006.html
https://codesearch.debian.net/results/int%20CLASS%20ljpeg_start
Starting with 2:13.2+dfsg1-5 xbmc is a transitional package