PT-2020-6833 · Libraw+9 · Libraw+9

Published

2020-07-02

·

Updated

2024-06-15

·

CVE-2020-15503

CVSS v2.0

7.8

High

VectorAV:N/AC:L/Au:N/C:N/I:N/A:C
Name of the Vulnerable Software and Affected Versions LibRaw versions prior to 0.20-RC1
Description The issue is related to the absence of a thumbnail size range check in the LibRaw library for image processing. This affects components such as decoders/unpack thumb.cpp, postprocessing/mem image.cpp, and utils/thumb utils.cpp. Exploitation of this issue can allow a remote attacker to cause a denial of service. For example, the malloc function is called with sizeof(libraw processed image t)+T.tlength without validating T.tlength.
Recommendations For versions prior to 0.20-RC1, update to version 0.20-RC1 or later to resolve the issue. As a temporary workaround, consider restricting the use of the affected components, such as decoders/unpack thumb.cpp, postprocessing/mem image.cpp, and utils/thumb utils.cpp, until a patch is available. Avoid using unvalidated input for T.tlength in the affected malloc call until the issue is resolved.

Exploit

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

ALSA-2020:4451
ALT-PU-2020-3199
AZL-44688
BDU:2023-00283
CESA-2020_4451
CVE-2020-15503
DLA-3214-1
MGASA-2020-0368
OPENSUSE-SU-2020:1088-1
OPENSUSE-SU-2020:1128-1
OPENSUSE-SU-2020_1088-1
OPENSUSE-SU-2020_1128-1
OPENSUSE-SU-2024:10980-1
RHSA-2020:4451
RHSA-2020_4451
RLSA-2020:4451
SUSE-SU-2020:2028-1
SUSE-SU-2020:2029-1
SUSE-SU-2020_2028-1
USN-5715-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Libraw
Linuxmint
Red Hat
Rocky Linux
Suse
Ubuntu