CVE-2013-1439
Published Sep 16, 2013
Last updated 11 years ago
Overview
- Description
- The "faster LJPEG decoder" in libraw 0.13.x, 0.14.x, and 0.15.x before 0.15.4 allows context-dependent attackers to cause a denial of service (NULL pointer dereference) via a crafted photo file.
- Source
- security@debian.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 4.3
- Impact score
- 2.9
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:N/I:N/A:P
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:libraw:libraw:0.13.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "41959708-2D95-472D-B845-40EC10C51ACE"
},
{
"criteria": "cpe:2.3:a:libraw:libraw:0.13.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "03492249-E4F2-4696-AE8A-7111E3834490"
},
{
"criteria": "cpe:2.3:a:libraw:libraw:0.13.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8939A79E-5B9C-4389-9CEA-752899C4AAE9"
},
{
"criteria": "cpe:2.3:a:libraw:libraw:0.13.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0B566274-96B5-4966-9ECA-F78DBB8F0DFD"
},
{
"criteria": "cpe:2.3:a:libraw:libraw:0.13.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1C1C9DE3-EEFF-4C10-8212-1BDFAF900204"
},
{
"criteria": "cpe:2.3:a:libraw:libraw:0.13.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3DA5937A-9559-4A3D-B550-05512F639B89"
},
{
"criteria": "cpe:2.3:a:libraw:libraw:0.13.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "93912D7A-FE0B-4ACE-9F96-64D6F0EDE5C9"
},
{
"criteria": "cpe:2.3:a:libraw:libraw:0.13.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9F3DBCCD-AC9F-4DAE-A6B2-13BA32F2575A"
},
{
"criteria": "cpe:2.3:a:libraw:libraw:0.13.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CA950266-7B17-4A01-B879-6DC30F793608"
},
{
"criteria": "cpe:2.3:a:libraw:libraw:0.14.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "98C296C8-D525-4847-AA59-8CC46719D92E"
},
{
"criteria": "cpe:2.3:a:libraw:libraw:0.14.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1DFCCA04-3EED-48C5-9C70-7D3F0003C0D6"
},
{
"criteria": "cpe:2.3:a:libraw:libraw:0.14.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8A74AA57-4D88-4DF0-85A9-E7D6D1CEFF00"
},
{
"criteria": "cpe:2.3:a:libraw:libraw:0.14.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "69FEC106-AC7E-4ED9-8963-3FD4817EC56B"
},
{
"criteria": "cpe:2.3:a:libraw:libraw:0.14.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "05EEAF87-8CCE-48EC-86E7-EE28329D2A9D"
},
{
"criteria": "cpe:2.3:a:libraw:libraw:0.14.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D054474D-5C98-4797-9C15-217B8EBD55EA"
},
{
"criteria": "cpe:2.3:a:libraw:libraw:0.14.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "333AFB23-DC69-4612-8C6D-097617993561"
},
{
"criteria": "cpe:2.3:a:libraw:libraw:0.14.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4BD3FC3C-52B7-45C6-84E6-6574767B2C72"
},
{
"criteria": "cpe:2.3:a:libraw:libraw:0.15.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "25844B56-0F72-4FAA-9179-19659142A8C2"
},
{
"criteria": "cpe:2.3:a:libraw:libraw:0.15.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "36D20992-4F53-4BBF-8CF8-C3128F07EAB6"
},
{
"criteria": "cpe:2.3:a:libraw:libraw:0.15.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1C98A25F-7E97-4FE9-86B6-C281AE330D8C"
},
{
"criteria": "cpe:2.3:a:libraw:libraw:0.15.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3E52EC30-160B-4095-A269-DA8B7F0A11AA"
}
],
"operator": "OR"
}
]
}
]