DEBIAN-CVE-2015-3885

See a problem?
Please try reporting it to the source first.
Source
https://security-tracker.debian.org/tracker/CVE-2015-3885
Import Source
https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2015-3885.json
JSON Data
https://api.test.osv.dev/v1/vulns/DEBIAN-CVE-2015-3885
Published
2015-05-19T18:59:07Z
Modified
2025-09-19T06:13:28Z
Summary
[none]
Details

Integer overflow in the ljpeg_start function in dcraw 7.00 and earlier allows remote attackers to cause a denial of service (crash) via a crafted image, which triggers a buffer overflow, related to the len variable.

References

Affected packages

Debian:11

darktable

Package

Name
darktable
Purl
pkg:deb/debian/darktable?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.6.7-1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

dcraw

Package

Name
dcraw
Purl
pkg:deb/debian/dcraw?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
9.26-1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

exactimage

Package

Name
exactimage
Purl
pkg:deb/debian/exactimage?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.9.1-5

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

freeimage

Package

Name
freeimage
Purl
pkg:deb/debian/freeimage?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.15.4-6

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

kodi

Package

Name
kodi
Purl
pkg:deb/debian/kodi?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
16.0+dfsg1-1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

libraw

Package

Name
libraw
Purl
pkg:deb/debian/libraw?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.16.2-1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

rawtherapee

Package

Name
rawtherapee
Purl
pkg:deb/debian/rawtherapee?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.2-2

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Debian:12

darktable

Package

Name
darktable
Purl
pkg:deb/debian/darktable?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.6.7-1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

dcraw

Package

Name
dcraw
Purl
pkg:deb/debian/dcraw?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
9.26-1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

exactimage

Package

Name
exactimage
Purl
pkg:deb/debian/exactimage?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.9.1-5

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

freeimage

Package

Name
freeimage
Purl
pkg:deb/debian/freeimage?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.15.4-6

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

kodi

Package

Name
kodi
Purl
pkg:deb/debian/kodi?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
16.0+dfsg1-1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

libraw

Package

Name
libraw
Purl
pkg:deb/debian/libraw?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.16.2-1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

rawtherapee

Package

Name
rawtherapee
Purl
pkg:deb/debian/rawtherapee?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.2-2

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Debian:13

darktable

Package

Name
darktable
Purl
pkg:deb/debian/darktable?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.6.7-1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

dcraw

Package

Name
dcraw
Purl
pkg:deb/debian/dcraw?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
9.26-1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

exactimage

Package

Name
exactimage
Purl
pkg:deb/debian/exactimage?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.9.1-5

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

freeimage

Package

Name
freeimage
Purl
pkg:deb/debian/freeimage?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.15.4-6

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

kodi

Package

Name
kodi
Purl
pkg:deb/debian/kodi?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
16.0+dfsg1-1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

libraw

Package

Name
libraw
Purl
pkg:deb/debian/libraw?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.16.2-1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

rawtherapee

Package

Name
rawtherapee
Purl
pkg:deb/debian/rawtherapee?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.2-2

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Debian:14

darktable

Package

Name
darktable
Purl
pkg:deb/debian/darktable?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.6.7-1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

dcraw

Package

Name
dcraw
Purl
pkg:deb/debian/dcraw?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
9.26-1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

exactimage

Package

Name
exactimage
Purl
pkg:deb/debian/exactimage?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.9.1-5

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

freeimage

Package

Name
freeimage
Purl
pkg:deb/debian/freeimage?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.15.4-6

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

kodi

Package

Name
kodi
Purl
pkg:deb/debian/kodi?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
16.0+dfsg1-1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

libraw

Package

Name
libraw
Purl
pkg:deb/debian/libraw?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.16.2-1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

rawtherapee

Package

Name
rawtherapee
Purl
pkg:deb/debian/rawtherapee?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.2-2

Ecosystem specific 

{
    "urgency": "not yet assigned"
}