CVE-2015-8367

CVE-2015-8367

EPSS 5.5%

The phase_one_correct function in Libraw before 0.17.1 allows attackers to cause memory errors and possibly execute arbitrary code, related to memory object initialization.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://packetstormsecurity.com/files/134573/LibRaw-0.17-Overflow.html http://seclists.org/fulldisclosure/2015/Nov/108 http://www.libraw.org/news/libraw-0-17-1