MGASA-2021-0004 - Updated rawtherapee package fixes a security vulnerability Publication date: 04 Jan 2021 URL: https://advisories.mageia.org/MGASA-2021-0004.html Type: security Affected Mageia releases: 7 CVE: CVE-2017-13735 There is a floating point exception in dcraw_common.cpp of libRAW. It will lead to remote denial of service attack. This code is embedded in rawtherapee (CVE-2017-13735). References: - https://bugs.mageia.org/show_bug.cgi?id=27963 - https://lists.fedoraproject.org/archives/list/[email protected]/thread/CMHXYQOFX5OQSBWNNMCVGJLYXTZHXYTM/ - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13735 SRPMS: - 7/core/rawtherapee-5.6-1.1.mga7
Mageia 2021-0004: rawtherapee security update
There is a floating point exception in dcraw_common.cpp of libRAW
Summary
CVE: CVE-2017-13735
There is a floating point exception in dcraw_common.cpp of libRAW. It will lead
to remote denial of service attack. This code is embedded in rawtherapee
(CVE-2017-13735).
Resolution
MGASA-2021-0004 - Updated rawtherapee package fixes a security vulnerability
References
- https://bugs.mageia.org/show_bug.cgi?id=27963
- https://lists.fedoraproject.org/archives/list/[email protected]/thread/CMHXYQOFX5OQSBWNNMCVGJLYXTZHXYTM/
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13735
Severity
Issued Date: 04 Jan 2021
URL: https://advisories.mageia.org/MGASA-2021-0004.html
Type: security
Affected Mageia releases: 7
News
HOWTOs
Features
Secure Linux Hosting for Businesses
What Is Threat Intelligence?
CloudLinux Simplifies & Enhances Linux Security with its TuxCare Unified Enterprise Support Services
LinuxSecurity, Leading Provider of Linux Security News and Information, Unveils its New Website
Biden's New Executive Cybersecurity Order Highlights the Power of Open-Source Security
About Us
Powered By
