You are here
Home > Preporuke > Sigurnosni nedostatak programske biblioteke LibRaw

Sigurnosni nedostatak programske biblioteke LibRaw

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

——————————————————————————–
Fedora Update Notification
FEDORA-2018-cfcd6d96de
2018-06-15 15:48:22.929999
——————————————————————————–

Name : LibRaw
Product : Fedora 28
Version : 0.18.12
Release : 1.fc28
URL : http://www.libraw.org
Summary : Library for reading RAW files obtained from digital photo cameras
Description :
LibRaw is a library for reading RAW files obtained from digital photo
cameras (CRW/CR2, NEF, RAF, DNG, and others).

LibRaw is based on the source codes of the dcraw utility, where part of
drawbacks have already been eliminated and part will be fixed in future.

——————————————————————————–
Update Information:

Secunia Advisory SA83507, credits Kasper Leigh Haabb, Secunia Research at
Flexera parse_qt: possible integer overflow reject broken/crafted NOKIARAW files
Backported 0.19-patch to recover read position if TIFF/EXIF tag is too long
——————————————————————————–
ChangeLog:

* Mon Jun 11 2018 Gwyn Ciesla <limburgher@gmail.com> – 0.18.12-1
– 0.18.12.
* Thu May 10 2018 Gwyn Ciesla <limburgher@gmail.com> – 0.18.11-1
– 0.18.11.
* Thu May 3 2018 Gwyn Ciesla <limburgher@gmail.com> – 0.18.10-1
– 0.18.10.
* Wed Apr 25 2018 Gwyn Ciesla <limburgher@gmail.com> – 0.18.9-1
– 0.18.9.
——————————————————————————–
References:

[ 1 ] Bug #1589800 – LibRaw-0.18.12 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1589800
——————————————————————————–

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade –advisory FEDORA-2018-cfcd6d96de’ at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TXPMLRJZPD2OEFKNQJZNDLRUZ37DJX5M/

——————————————————————————–
Fedora Update Notification
FEDORA-2018-388847c0de
2018-06-20 13:53:58.303883
——————————————————————————–

Name : LibRaw
Product : Fedora 27
Version : 0.18.12
Release : 1.fc27
URL : http://www.libraw.org
Summary : Library for reading RAW files obtained from digital photo cameras
Description :
LibRaw is a library for reading RAW files obtained from digital photo
cameras (CRW/CR2, NEF, RAF, DNG, and others).

LibRaw is based on the source codes of the dcraw utility, where part of
drawbacks have already been eliminated and part will be fixed in future.

——————————————————————————–
Update Information:

Secunia Advisory SA83507, credits Kasper Leigh Haabb, Secunia Research at
Flexera parse_qt: possible integer overflow reject broken/crafted NOKIARAW files
Backported 0.19-patch to recover read position if TIFF/EXIF tag is too long
——————————————————————————–
ChangeLog:

* Mon Jun 11 2018 Gwyn Ciesla <limburgher@gmail.com> – 0.18.12-1
– 0.18.12.
* Thu May 10 2018 Gwyn Ciesla <limburgher@gmail.com> – 0.18.11-1
– 0.18.11.
* Thu May 3 2018 Gwyn Ciesla <limburgher@gmail.com> – 0.18.10-1
– 0.18.10.
* Wed Apr 25 2018 Gwyn Ciesla <limburgher@gmail.com> – 0.18.9-1
– 0.18.9.
* Sat Feb 24 2018 Gwyn Ciesla <limburgher@gmail.com> – 0.18.8-1
– 0.18.8.
* Wed Feb 7 2018 Fedora Release Engineering <releng@fedoraproject.org> – 0.18.7-3
– Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
* Fri Feb 2 2018 Gwyn Ciesla <limburgher@gmail.com> – 0.18.7-2
– Patch for updated glibc.
* Fri Jan 19 2018 Gwyn Ciesla <limburgher@gmail.com> – 0.18.7-1
– 0.18.7
– Patch for ambiguous function call.
* Wed Dec 6 2017 Gwyn Ciesla <limburgher@gmail.com> – 0.18.6-1
– 0.18.6
——————————————————————————–
References:

[ 1 ] Bug #1589800 – LibRaw-0.18.12 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1589800
——————————————————————————–

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade –advisory FEDORA-2018-388847c0de’ at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QC6GKSIVMV6QOIWVSRXDWFAN7MIAETME/

AutorPetar Bertok
Cert idNCERT-REF-2018-06-0001-ADV
CveCERT-CVE-DUMMY
ID izvornikaCERT-ORIGID-DUMMY
ProizvodCERT-DUMMY-PRODUCT
IzvorAdobe
Top
More in Preporuke
Sigurnosni nedostaci programskog paketa enigmail

Otkriveni su sigurnosni nedostaci u programskom paketu enigmail za operacijski sustav openSUSE. Otkriveni nedostaci potencijalnim napadačima omogućuju lažiranje potpisa. Savjetuje...

Close