CVE-2020-15503: Input Validation
First published: Thu Jul 02 2020(Updated: )
LibRaw before 0.20-RC1 lacks a thumbnail size range check. This affects decoders/unpack_thumb.cpp, postprocessing/mem_image.cpp, and utils/thumb_utils.cpp. For example, malloc(sizeof(libraw_processed_image_t)+T.tlength) occurs without validating T.tlength.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/LibRaw | <0.20 | 0.20 |
| Libraw Libraw | <=0.19.5 | |
| Libraw Libraw | =0.20-beta1 | |
| Libraw Libraw | =0.20-beta2 | |
| Libraw Libraw | =0.20-beta3 | |
| Fedoraproject Fedora | =31 | |
| Fedoraproject Fedora | =32 | |
| Debian Debian Linux | =10.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00075.html
- http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00001.html
- https://github.com/LibRaw/LibRaw/commit/20ad21c0d87ca80217aee47533d91e633ce1864d
- https://github.com/LibRaw/LibRaw/compare/0.20-Beta3...0.20-RC1
- https://lists.debian.org/debian-lts-announce/2022/11/msg00042.html
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7HM2DS6HA4YZREI3BYGS75M6D76WMW62/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CSXAJKZ4VNDYVQULJNY4XDPWHIJDTB4P/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DNGDWTO45TU4KGND75EUUEGUMNSOYC7H/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QCVKD7PTO7UQAVUTBHJAKBKYLPQQGAMZ/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Y34ALB34P3NGQXLF7BG7R6DGRX6XL2JN/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YZETDVPZQWZWVGIG6JTIEKP5KPVMUE7Y/
- https://www.libraw.org/news/libraw-0-20-rc1
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1853478
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1853479
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=1699874&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=1699874&action=edit
- https://access.redhat.com/errata/RHSA-2020:4451
- https://access.redhat.com/security/cve/cve-2020-15503
- https://bugzilla.redhat.com/show_bug.cgi?id=1853477
Frequently Asked Questions
What is CVE-2020-15503?
CVE-2020-15503 is a vulnerability in LibRaw before version 0.20-RC1 that lacks a thumbnail size range check.
Which components of LibRaw are affected by CVE-2020-15503?
The vulnerability affects decoders/unpack_thumb.cpp, postprocessing/mem_image.cpp, and utils/thumb_utils.cpp.
What is the severity of CVE-2020-15503?
The severity of CVE-2020-15503 is high, with a severity value of 7.5.
How can I fix CVE-2020-15503?
To fix CVE-2020-15503, you should upgrade to version 0.20 or later of LibRaw.
Where can I find more information about CVE-2020-15503?
You can find more information about CVE-2020-15503 on the following sources: [OpenSUSE Security Announce](http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00075.html), [OpenSUSE Security Announce](http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00001.html), [GitHub Commit](https://github.com/LibRaw/LibRaw/commit/20ad21c0d87ca80217aee47533d91e633ce1864d).
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/remedy
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/type
- agent/weakness
- collector/nvd-index
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2020-15503
- agent/software-canonical-lookup
- vendor/libraw
- canonical/libraw libraw
- version/libraw libraw/0.19.5
- version/libraw libraw/0.20-beta1
- version/libraw libraw/0.20-beta2
- version/libraw libraw/0.20-beta3
- vendor/fedoraproject
- canonical/fedoraproject fedora
- version/fedoraproject fedora/31
- version/fedoraproject fedora/32
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/10.0
- package-manager/redhat