A Heap-based buffer overflow was found in LibRaw::raw2image() function. A maliciously crafted file could cause the application to crash.
Created LibRaw tracking bugs for this issue:
Affects: epel-6 [bug 1663968]
Affects: fedora-all [bug 1663965]
Created mingw-LibRaw tracking bugs for this issue:
Affects: fedora-all [bug 1663967]
When opening Sinar raw images that enable filters, the image data are updated in the wrong way in libraw_cxx.cpp:open_datastream(), causing an heap-based buffer overflow in raw2image() function later on.
Should be fixed in LibRaw-0.19.3.
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):