| Release | Version |
|---|---|
| bullseye | 9.28-2 |
| bookworm | 9.28-3 |
| trixie | 9.28-8 |
| forky | 9.28-8 |
| sid | 9.28-8 |
| Bug | bullseye | bookworm | trixie | forky | sid | Description |
|---|---|---|---|---|---|---|
| CVE-2021-3624 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | There is an integer overflow vulnerability in dcraw. When the victim r ... |
| Bug | bullseye | bookworm | trixie | forky | sid | Description |
|---|---|---|---|---|---|---|
| CVE-2018-19568 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | A floating point exception in kodak_radc_load_raw in dcraw through 9.2 ... |
| CVE-2018-19567 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | A floating point exception in parse_tiff_ifd in dcraw through 9.28 cou ... |
| CVE-2018-19566 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | A heap buffer over-read in parse_tiff_ifd in dcraw through 9.28 could ... |
| CVE-2018-19565 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | A buffer over-read in crop_masked_pixels in dcraw through 9.28 could b ... |
| Bug | Description |
|---|---|
| CVE-2018-19655 | A stack-based buffer overflow in the find_green() function of dcraw th ... |
| CVE-2015-8367 | The phase_one_correct function in Libraw before 0.17.1 allows attacker ... |
| CVE-2015-8366 | Array index error in smal_decode_segment function in LibRaw before 0.1 ... |
| CVE-2015-3885 | Integer overflow in the ljpeg_start function in dcraw 7.00 and earlier ... |
| CVE-2013-1438 | Unspecified vulnerability in dcraw 0.8.x through 0.8.9, as used in lib ... |