Advisories ยป MGASA-2014-0081

Updated rawtherapee package fixes security vulnerability

Publication date: 17 Feb 2014
Type: security
Affected Mageia releases : 3 , 4
CVE: CVE-2013-1438

Description

Due to flaws in the embedded copy of dcraw in rawtherapee, corrupt input
files might trigger a division by zero, an infinite loop, or a null pointer
dereference (CVE-2013-1438).
                

References

SRPMS

3/core

4/core