GCVE - cpe:2.3:a:flexera_software_llc:libraw:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:flexera_software_llc:libraw:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Flexera Software Llc (`c00ba63b-44d4-53e3-ae5d-5c8b1cecdf92`)
Product	Libraw (`08ccbbd5-3cf1-51de-bacd-58cb1424918e`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2018-5819`	vulnerable	2026-06-08 05:11:51.983896	Details available An error within the "parse_sinar_ia()" function (internal/dcraw_common.cpp) within LibRaw versions prior to 0.19.1 can be exploited to exhaust available CPU resources. Published: 2019-02-20T18:00:00.000Z Updated: 2024-09-17T04:29:32.330Z Open on db.gcve.eu Reference links https://secuniaresearch.flexerasoftware.com/secunia_research/2018-27/ https://www.libraw.org/news/libraw-0-19-2-release https://lists.debian.org/debian-lts-announce/2019/03/msg00036.html https://usn.ubuntu.com/3989-1/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-5817`	vulnerable	2026-06-08 05:11:51.983000	Details available A type confusion error within the "unpacked_load_raw()" function within LibRaw versions prior to 0.19.1 (internal/dcraw_common.cpp) can be exploited to trigger an infinite loop. Published: 2019-02-20T18:00:00.000Z Updated: 2024-09-16T19:15:52.663Z Open on db.gcve.eu Reference links https://secuniaresearch.flexerasoftware.com/secunia_research/2018-27/ https://www.libraw.org/news/libraw-0-19-2-release https://lists.debian.org/debian-lts-announce/2019/03/msg00036.html https://usn.ubuntu.com/3989-1/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.