Security Advisory

CVE-2018-5815

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-12-07 22:00:00

Last updated 2024-08-05 05:47:56

Assigner flexera

State PUBLISHED

Description

An integer overflow error within the "parse_qt()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.12 can be exploited to trigger an infinite loop via a specially crafted Apple QuickTime file.

← Browse all CVEs View on cve.org ↗