Main Vulnerability Database Vulnerabilities #VU32072

Buffer overflow in LibRaw - CVE-2017-6887

Published: May 16, 2017 / Updated: July 28, 2020

Vulnerability identifier: #VU32072

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2017-6887

CWE-ID: CWE-119

Exploitation vector: Local access

Exploit availability: No public exploit available

Vendor: LibRaw LLC

Affected software:
LibRaw

Detailed vulnerability description

The vulnerability allows a local non-authenticated attacker to execute arbitrary code.

A boundary error within the "parse_tiff_ifd()" function (internal/dcraw_common.cpp) in LibRaw versions before 0.18.2 can be exploited to cause a memory corruption via e.g. a specially crafted KDC file with model set to "DSLR-A100" and containing multiple sequences of 0x100 and 0x14A TAGs.

How to mitigate CVE-2017-6887

Install update from vendor's website.

Sources

http://www.debian.org/security/2017/dsa-3950
http://www.securityfocus.com/bid/98592
https://github.com/LibRaw/LibRaw/commit/d7c3d2cb460be10a3ea7b32e9443a83c243b2251
https://secuniaresearch.flexerasoftware.com/advisories/75737/
https://secuniaresearch.flexerasoftware.com/secunia_research/2017-6/

Buffer overflow in LibRaw - CVE-2017-6887

Detailed vulnerability description

How to mitigate CVE-2017-6887

Sources

Please verify you're human