Vulnerabilities > CVE-2018-5813 - Infinite Loop vulnerability in multiple products

CVSS 7.1 - HIGH

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

network

libraw

canonical

CWE-835

nessus

NVD

Published: 2018-12-07

Updated: 2020-11-10

Summary

An error within the "parse_minolta()" function (dcraw/dcraw.c) in LibRaw versions prior to 0.18.11 can be exploited to trigger an infinite loop via a specially crafted file.

Vulnerable Configurations

Part	Description	Count
Application	Libraw Libraw Libraw 0.11.1 Libraw Libraw 0.11.2 Libraw Libraw 0.11.3 Libraw Libraw 0.12.0 Libraw Libraw 0.12.1 Libraw Libraw 0.12.2 Libraw Libraw 0.12.3 Libraw Libraw 0.12.4 Libraw Libraw 0.12.5 Libraw Libraw 0.13.0 Libraw Libraw 0.13.1 Libraw Libraw 0.13.2 Libraw Libraw 0.13.3 Libraw Libraw 0.13.4 Libraw Libraw 0.13.5 Libraw Libraw 0.13.6 Libraw Libraw 0.13.7 Libraw Libraw 0.13.8 Libraw Libraw 0.14.0 Libraw Libraw 0.14.1 Libraw Libraw 0.14.2 Libraw Libraw 0.14.3 Libraw Libraw 0.14.4 Libraw Libraw 0.14.5 Libraw Libraw 0.14.6 Libraw Libraw 0.14.7 Libraw Libraw 0.14.8 Libraw Libraw 0.15.0 Libraw Libraw 0.15.1 Libraw Libraw 0.15.2 Libraw Libraw 0.15.3 Libraw Libraw 0.15.4 Libraw Libraw 0.16.0 Libraw Libraw 0.16.1 Libraw Libraw 0.16.2 Libraw Libraw 0.17.0 Libraw Libraw 0.17.1 Libraw Libraw 0.17.2 Libraw Libraw 0.18.0 Libraw Libraw 0.18.1 Libraw Libraw 0.18.2 Libraw Libraw 0.18.3 Libraw Libraw 0.18.4 Libraw Libraw 0.18.5 Libraw Libraw 0.18.6 Libraw Libraw 0.18.7 Libraw Libraw 0.18.8 Libraw Libraw 0.18.9 Libraw Libraw 0.18.10	51
OS	Canonical Canonical Ubuntu Linux 14.04 Canonical Ubuntu Linux 16.04 Canonical Ubuntu Linux 18.04	3

Common Weakness Enumeration (CWE)

CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Nessus

NASL family	SuSE Local Security Checks
NASL id	OPENSUSE-2019-8.NASL
description	This update for libraw fixes the following issues : The following security vulnerabilities were addressed : - CVE-2018-5813: Fixed an error within the
last seen	2020-03-18
modified	2019-01-11
plugin id	121089
published	2019-01-11
reporter	This script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/121089
title	openSUSE Security Update : libraw (openSUSE-2019-8)

NASL family	SuSE Local Security Checks
NASL id	OPENSUSE-2018-849.NASL
description	This update for libraw fixes the following issues : The following security vulnerabilities were addressed : - CVE-2018-5813: Fixed an error within the
last seen	2020-06-05
modified	2018-08-10
plugin id	111630
published	2018-08-10
reporter	This script is Copyright (C) 2018-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/111630
title	openSUSE Security Update : libraw (openSUSE-2018-849)

NASL family	Ubuntu Local Security Checks
NASL id	UBUNTU_USN-3838-1.NASL
description	It was discovered that LibRaw incorrectly handled photo files. If a user or automated system were tricked into processing a specially crafted photo file, a remote attacker could cause applications linked against LibRaw to crash, resulting in a denial of service, or possibly execute arbitrary code. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
last seen	2020-06-10
modified	2018-12-06
plugin id	119459
published	2018-12-06
reporter	Ubuntu Security Notice (C) 2018-2020 Canonical, Inc. / NASL script (C) 2018-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/119459
title	Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : libraw vulnerabilities (USN-3838-1)

NASL family	SuSE Local Security Checks
NASL id	SUSE_SU-2019-0005-1.NASL
description	This update for libraw fixes the following issues : Security issues fixed : The following security vulnerabilities were addressed : CVE-2018-5813: Fixed an error within the
last seen	2020-03-18
modified	2019-01-07
plugin id	120984
published	2019-01-07
reporter	This script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/120984
title	SUSE SLED15 / SLES15 Security Update : libraw (SUSE-SU-2019:0005-1)

NASL family	SuSE Local Security Checks
NASL id	SUSE_SU-2018-3343-1.NASL
description	This update for libraw fixes the following issues : Security issues fixed : CVE-2018-5800: Fixed heap-based buffer overflow in LibRaw::kodak_ycbcr_load_raw function (bsc#1084691). CVE-2018-5801: Fixed NULL pointer dereference in LibRaw::unpack function (bsc#1084690). CVE-2018-5802: Fixed out-of-bounds read in kodak_radc_load_raw function (bsc#1084688). CVE-2018-5813: Fixed infinite loop in the parse_minolta function (bsc#1103200) CVE-2018-5810: Fixed a heap-based buffer overflow in rollei_load_raw (bsc#1103353) Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
last seen	2020-06-01
modified	2020-06-02
plugin id	118353
published	2018-10-24
reporter	This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/118353
title	SUSE SLED12 Security Update : libraw (SUSE-SU-2018:3343-1)

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

Nessus

References