advisories/27963.adv

type: security
subject: Updated rawtherapee package fixes a security vulnerability
CVE:
 - CVE-2017-13735
src:
  7:
   core:
     - rawtherapee-5.6-1.1.mga7
description: |
  There is a floating point exception in dcraw_common.cpp of libRAW. It will lead
  to remote denial of service attack. This code is embedded in rawtherapee
  (CVE-2017-13735).
references:
 - https://bugs.mageia.org/show_bug.cgi?id=27963
 - https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/CMHXYQOFX5OQSBWNNMCVGJLYXTZHXYTM/
ID: MGASA-2021-0004
1	type: security
2	subject: Updated rawtherapee package fixes a security vulnerability
3	CVE:
4	- CVE-2017-13735
5	src:
6	7:
7	core:
8	- rawtherapee-5.6-1.1.mga7
9	description: \|
10	There is a floating point exception in dcraw_common.cpp of libRAW. It will lead
11	to remote denial of service attack. This code is embedded in rawtherapee
12	(CVE-2017-13735).
13	references:
14	- https://bugs.mageia.org/show_bug.cgi?id=27963
15	- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/CMHXYQOFX5OQSBWNNMCVGJLYXTZHXYTM/
16	ID: MGASA-2021-0004