CVE-2015-3885 Ubuntu Security Notification for Libraw Vulnerabilities (USN-3492-1)

漏洞类别:Ubuntu

漏洞等级:

漏洞信息

It was discovered that LibRaw incorrectly handled photo files.

漏洞危害

If a user or automated system were tricked into processing a specially crafted photo file, a remote attacker could cause applications linked against LibRaw to crash, resulting in a denial of service, or possibly execute arbitrary code

解决方案

Refer to Ubuntu advisory USN-3492-1 for affected packages and patching details, or update with your package manager.

Patch:
Following are links for downloading patches to fix the vulnerabilities:

USN-3492-1: 16.04 (Xenial) on src (libraw15)

USN-3492-1: 17.10 (artful) on src (libraw16)

USN-3492-1: 17.04 (zesty) on src (libraw16)

USN-3492-1: 14.04 (Kylin) on src (libraw9)

Leave a Reply