Bug 1488476 (CVE-2017-13735)

Summary:	CVE-2017-13735 libraw: Floating point exception in kodak_radc_load_raw function in internal/dcraw_common.cpp
Product:	[Other] Security Response	Reporter:	Pedro Sampaio <psampaio>
Component:	vulnerability	Assignee:	Red Hat Product Security <security-response-team>
Status:	CLOSED WONTFIX	QA Contact:
Severity:	low	Docs Contact:
Priority:	low
Version:	unspecified	CC:	alekcejk, dchen, extras-orphan, gwync, hobbes1069, jreznik, jridky, kde-sig, manisandro, mattdm, mattia.verga, nphilipp, rdieter, sebastian, siddharth.kde, than, thibault.north
Target Milestone:	---	Keywords:	Security
Target Release:	---
Hardware:	All
OS:	Linux
Whiteboard:
Fixed In Version:		Doc Type:	If docs needed, set a value
Doc Text:		Story Points:	---
Clone Of:		Environment:
Last Closed:	2017-09-06 06:30:49 UTC	Type:	---
Regression:	---	Mount Type:	---
Documentation:	---	CRM:
Verified Versions:		Category:	---
oVirt Team:	---	RHEL 7.3 requirements from Atomic Host:
Cloudforms Team:	---	Target Upstream Version:
Embargoed:
Bug Depends On:	1483988, 1488930, 1488931, 1488932, 1488945, 1488946, 1488947
Bug Blocks:

Description Pedro Sampaio 2017-09-05 13:30:06 UTC

There is a floating point exception in dcraw_common.cpp of libRAW. It will lead to remote denial of service attack.

Upstream bug:

https://github.com/LibRaw/LibRaw/issues/96

Proposed patch:

https://github.com/LibRaw/LibRaw/files/1276421/radc_divbyzero.txt

References:

https://bugzilla.redhat.com/show_bug.cgi?id=1483988

Comment 1 Pedro Sampaio 2017-09-06 13:27:38 UTC

Created dcraw tracking bugs for this issue:

Affects: fedora-all [bug 1488932]


Created libkdcraw tracking bugs for this issue:

Affects: fedora-all [bug 1488931]


Created rawtherapee tracking bugs for this issue:

Affects: fedora-all [bug 1488930]

Comment 2 Pedro Sampaio 2017-09-06 13:41:01 UTC

Created LibRaw tracking bugs for this issue:

Affects: epel-6 [bug 1488945]
Affects: fedora-all [bug 1488947]


Created mingw-LibRaw tracking bugs for this issue:

Affects: fedora-all [bug 1488946]