Heap-based buffer overflow vulnerability in LibRaw-demosaic-pack-GPL2 before 0.18.2

Heap-based buffer overflow vulnerability in LibRaw-demosaic-pack-GPL2 before 0.18.2

CVE-2017-6889 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

An integer overflow error within the "foveon_load_camf()" function (dcraw_foveon.c) in LibRaw-demosaic-pack-GPL2 before 0.18.2 can be exploited to cause a heap-based buffer overflow.

Learn more about our Web Application Penetration Testing UK.