Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Fedora 40: FEDORA-2025-32a9eb17af critical: mingw LibRaw access issue

fedora
Calendar Grey April 30, 2025
Dist Fedora Esm H88
Fedora 40 update fixes LibRaw security and performance flaws linked to out-of-buffer access and validation issues.
Update to LibRaw 0.21.4.

Summary

MinGW Windows LibRaw library.

Update Information:

Update to LibRaw 0.21.4.

Topics%20covered

Topics Covered

security advisory fedora update access issue mingw LibRaw

Change Log

* Wed Apr 16 2025 Sandro Mani - 0.21.4-1 - Update to 0.21.4 * Fri Jan 17 2025 Fedora Release Engineering - 0.21.3-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Mon Sep 23 2024 Sandro Mani - 0.21.3-1 - Update to 0.21.3 * Thu Jul 18 2024 Fedora Release Engineering - 0.21.2-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild

References


[ 1 ] Bug #2361338 - CVE-2025-43963 mingw-LibRaw: out-of-buffer access [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2361338 [ 2 ] Bug #2361343 - CVE-2025-43963 mingw-LibRaw: out-of-buffer access [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2361343 [ 3 ] Bug #2361348 - CVE-2025-43963 mingw-LibRaw: out-of-buffer access [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2361348 [ 4 ] Bug #2361356 - CVE-2025-43964 mingw-LibRaw: Improper Validation of Specified Quantity in Input in LibRaw [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2361356 [ 5 ] Bug #2361361 - CVE-2025-43964 mingw-LibRaw: Improper Validation of Specified Quantity in Input in LibRaw [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2361361 [ 6 ] Bug #2361366 - CVE-2025-43964 mingw-LibRaw: Improper Validation of Specified Quantity in Input in LibRaw [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2361...

Read the Full Advisory

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-32a9eb17af' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: mingw-LibRaw
Product: Fedora 40
Version: 0.21.4
Release: 1.fc40
URL: http://www.libraw.org
Summary: Library for reading RAW files obtained from digital photo cameras

Topics%20covered

Topics Covered

security advisory fedora update access issue mingw LibRaw

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here