CVE-2018-5815

Published December 7th, 2018

View on NVD ↗

CVSS v3

N/A

CVSS v2

7.1

HIGH

Affected

PROJECT

Description

An integer overflow error within the "parse_qt()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.12 can be exploited to trigger an infinite loop via a specially crafted Apple QuickTime file.

LibRaw/LibRaw

LibRaw is a library for reading RAW files from digital cameras

GitHub

1.5K