Advisories » MGASA-2013-0223

Updated darktable package fixes security vulnerability

Publication date: 21 Jul 2013
Modification date: 21 Jul 2013
Type: security
Affected Mageia releases : 3
CVE: CVE-2013-2126

Description

A double-free error exits when handling damaged full-color within Foveon and
sRAW files in libraw, which is embedded in darktable (CVE-2013-2126).
                

References

• https://bugs.mageia.org/show_bug.cgi?id=10427
• http://secunia.com/advisories/53547/
• http://www.libraw.org/news/libraw-0-15-2
• http://lists.opensuse.org/opensuse-updates/2013-06/msg00193.html
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2126

SRPMS

3/core

• darktable-1.2-1.1.mga3