Fedora 27 : LibRaw (2018-388847c0de)

High Nessus Plugin ID 110627

Synopsis

The remote Fedora host is missing a security update.

Description

Secunia Advisory SA83507, credits Kasper Leigh Haabb, Secunia Research at Flexera parse_qt: possible integer overflow reject broken/crafted NOKIARAW files Backported 0.19-patch to recover read position if TIFF/EXIF tag is too long

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

Solution

Update the affected LibRaw package.

See Also

https://bodhi.fedoraproject.org/updates/FEDORA-2018-388847c0de

Plugin Details

Severity: High

ID: 110627

File Name: fedora_2018-388847c0de.nasl

Version: 1.1

Type: local

Agent: unix

Published: 2018/06/21

Modified: 2018/06/21

Dependencies: 12634

Risk Information

Risk Factor: High

Vulnerability Information

CPE: p-cpe:/a:fedoraproject:fedora:LibRaw, cpe:/o:fedoraproject:fedora:27

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list

Patch Publication Date: 2018/06/20

Reference Information