CVE-2018-19655
SUSE Security Advisory - SUSE-SU-2022:1277-1
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
2Exploited in Wild
-Decision
Descriptions
A stack-based buffer overflow in the find_green() function of dcraw through 9.28, as used in ufraw-batch and many other products, may allow a remote attacker to cause a control-flow hijack, denial-of-service, or unspecified other impact via a maliciously crafted raw photo file.
Un desbordamiento de búfer basado en pila en la función find_green() de dcraw hasta la versión 9.28, tal y como se emplea en ufraw-batch y muchos otros productos, podría permitir que un atacante remoto provoque el secuestro de un flujo de control, denegación de servicio (DoS) u otro tipo de impacto sin especificar mediante un archivo de fotografía RAW maliciosamente manipulado.
An update that fixes 11 vulnerabilities is now available. This update for dcraw fixes the following issues. Fixed a denial of service issue due to a floating point exception. Fixed an invalid memory access that could lead to information disclosure or denial of service. Fixed a buffer overflow that could lead to an application crash. Fixed an invalid memory access that could lead to denial of service. Fixed a buffer overflow that could lead to an application crash. Fixed an invalid memory access that could lead to denial of service. Fixed an invalid memory access that could lead to information disclosure or denial of service. Fixed an invalid memory access that could lead to information disclosure or denial of service. Fixed a denial of service issue due to a floating point exception. Fixed a denial of service issue due to a floating point exception. Fixed a buffer overflow that could lead to code execution or denial of service.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2018-11-28 CVE Reserved
- 2018-11-29 CVE Published
- 2024-08-05 CVE Updated
- 2024-08-05 First Exploit
- 2025-05-21 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-787: Out-of-bounds Write
CAPEC
References (5)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|---|---|
| https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=890086 | 2024-08-05 | |
| https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=906529 | 2024-08-05 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Dcraw Project Search vendor "Dcraw Project" | Dcraw Search vendor "Dcraw Project" for product "Dcraw" | <= 9.28 Search vendor "Dcraw Project" for product "Dcraw" and version " <= 9.28" | - |
Affected
| ||||||
| Suse Search vendor "Suse" | Suse Linux Enterprise Desktop Search vendor "Suse" for product "Suse Linux Enterprise Desktop" | 12 Search vendor "Suse" for product "Suse Linux Enterprise Desktop" and version "12" | sp3 |
Affected
| ||||||
| Suse Search vendor "Suse" | Suse Linux Enterprise Desktop Search vendor "Suse" for product "Suse Linux Enterprise Desktop" | 12 Search vendor "Suse" for product "Suse Linux Enterprise Desktop" and version "12" | sp4 |
Affected
| ||||||
| Suse Search vendor "Suse" | Suse Linux Enterprise Server Search vendor "Suse" for product "Suse Linux Enterprise Server" | 11 Search vendor "Suse" for product "Suse Linux Enterprise Server" and version "11" | sp4 |
Affected
| ||||||
| Suse Search vendor "Suse" | Suse Linux Enterprise Server Search vendor "Suse" for product "Suse Linux Enterprise Server" | 12 Search vendor "Suse" for product "Suse Linux Enterprise Server" and version "12" | sp3 |
Affected
| ||||||
| Suse Search vendor "Suse" | Suse Linux Enterprise Server Search vendor "Suse" for product "Suse Linux Enterprise Server" | 12 Search vendor "Suse" for product "Suse Linux Enterprise Server" and version "12" | sp4 |
Affected
| ||||||