CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-6890
https://notcve.org/view.php?id=CVE-2017-6890
A boundary error within the "foveon_load_camf()" function (dcraw_foveon.c) when initializing a huffman table in LibRaw-demosaic-pack-GPL2 before 0.18.2 can be exploited to cause a stack-based buffer overflow. Un error de límite dentro de la función "foveon_load_camf ()" (dcraw_foveon.c) al inicializar una tabla huffman en LibRaw-demosaic-pack-GPL2 anterior a versión 0.18.2 puede ser explotado para causar un desbordamiento de búfer en la región stack de la memoria. • https://github.com/LibRaw/LibRaw-demosaic-pack-GPL2/commit/194f592e205990ea8fce72b6c571c14350aca716 https://secuniaresearch.flexerasoftware.com/advisories/75000 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-6889
https://notcve.org/view.php?id=CVE-2017-6889
An integer overflow error within the "foveon_load_camf()" function (dcraw_foveon.c) in LibRaw-demosaic-pack-GPL2 before 0.18.2 can be exploited to cause a heap-based buffer overflow. Un desbordamiento de enteros dentro de la función foveon_load_camf() (dcraw_foveon.c) en LibRaw-demosaic-pack-GPL2 en versiones anteriores a la 0.18.2 puede explotarse para provocar una sobrelectura de búfer basada dinámica o heap. • https://github.com/LibRaw/LibRaw-demosaic-pack-GPL2/commit/194f592e205990ea8fce72b6c571c14350aca716 https://secuniaresearch.flexerasoftware.com/advisories/75000 • CWE-190: Integer Overflow or Wraparound •