CVE-2015-3885

Description

Integer overflow in the ljpeg_start function in dcraw 7.00 and earlier allows remote attackers to cause a denial of service (crash) via a crafted image, which triggers a buffer overflow, related to the len variable.

Affected packages (10)

• Debian/darktablefrom 0, < 1.6.7-1
• Debian/dcrawfrom 0, < 9.26-1
• Debian/exactimagefrom 0, < 0.8.1-3+deb6u4
• Debian/exactimagefrom 0, < 0.9.1-5
• Debian/freeimagefrom 0, < 3.15.4-4.2+deb8u1
• Debian/freeimagefrom 0, < 3.15.4-6
• Debian/kodifrom 0, < 16.0+dfsg1-1
• Debian/librawfrom 0, < 0.9.1-1+deb6u1
• Debian/librawfrom 0, < 0.16.2-1
• Debian/rawtherapeefrom 0, < 4.2-2

References (1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2015-3885