CVE-2018-19567

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2018-19567

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-19567.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2018-19567

Downstream

DEBIAN-CVE-2018-19567

SUSE-SU-2022:1277-1

SUSE-SU-2022:1749-1

UBUNTU-CVE-2018-19567

Related

Published

2018-11-26T20:29:00Z

Modified

2025-08-09T20:01:25Z

Severity

5.5 (Medium) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

A floating point exception in parsetiffifd in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code.

References

Affected packages