Dear Colleagues,
I have investigated and fixed the issue:
* Below is cited an instance of the desired behaviour, and the
reason,
why I wrote wrappers of fseek() and similar (introduced in
Debian's
version 9.28-3). The procedure finish by exit(1), and indicates
of a fail.
In this case, t
Control: severity -1 normal
On 20.11.24 06:28, Ajin Deepak wrote:
Found a memory leak in the latest version of dcraw.
Did you already apply for a CVE number?
Impact:
Memory leaks can create vulnerabilities. Attackers might exploit them to
degrade service (denial of service attacks) or in
Package: dcraw
Version: 9.28-7
Found a memory leak in the latest version of dcraw.
Here is a transcript:
osboxes@osboxes:~/Desktop$ dcraw -g 2.2 1.0 -b 1.2 -j leak
fseek(0x5a1841ba9430, -2145648639,0): Invalid argument
osboxes@osboxes:~/Desktop$
For reference:
https://cve.mitre.org/cgi-bin/cveke
3 matches
Mail list logo
