VulnerableCode Package Details - pkg:deb/debian/darktable@1.0.4-1%2Bdeb7u2

Search for packages

Vulnerability	Summary	Fixed by
VCID-4cdx-cccn-q3ca Aliases: CVE-2018-25017	RawSpeed (aka librawspeed) 3.1 has a heap-based buffer overflow in TableLookUp::setTable.	2.6.0-1 Affected by 0 other vulnerabilities.
VCID-5qx5-u16v-vfgz Aliases: CVE-2015-8366	Multiple vulnerabilities have been found in LibRaw, the worst of which may allow attackers to execute arbitrary code.	2.2.1-3~bpo8+1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-c7f1-d627-z3dm Aliases: CVE-2013-1438	Multiple vulnerabilities have been found in LibRaw and libkdcraw, the worst of which may lead to arbitrary code execution.	1.4.2-1~bpo70+1 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-car8-7w1p-2uhx Aliases: CVE-2015-8367	Multiple vulnerabilities have been found in LibRaw, the worst of which may allow attackers to execute arbitrary code.	2.2.1-3~bpo8+1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-ngzk-excs-akbw Aliases: CVE-2013-1439	Multiple vulnerabilities have been found in LibRaw and libkdcraw, the worst of which may lead to arbitrary code execution.	1.4.2-1~bpo70+1 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-qncn-bvgd-r3eq Aliases: CVE-2013-2126	Multiple vulnerabilities have been found in LibRaw and libkdcraw, the worst of which may lead to arbitrary code execution.	1.4.2-1~bpo70+1 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-xswq-6aae-nqfb Aliases: CVE-2015-3885	A buffer overflow in DCRaw might allow remote attackers to cause a Denial of Service condition.	2.2.1-3~bpo8+1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-4cdx-cccn-q3ca
Aliases:
CVE-2018-25017

RawSpeed (aka librawspeed) 3.1 has a heap-based buffer overflow in TableLookUp::setTable.

2.6.0-1
Affected by 0 other vulnerabilities.

VCID-5qx5-u16v-vfgz
Aliases:
CVE-2015-8366

Multiple vulnerabilities have been found in LibRaw, the worst of which may allow attackers to execute arbitrary code.

2.2.1-3~bpo8+1
Affected by 1 other vulnerability.

VCID-c7f1-d627-z3dm
Aliases:
CVE-2013-1438

Multiple vulnerabilities have been found in LibRaw and libkdcraw, the worst of which may lead to arbitrary code execution.

1.4.2-1~bpo70+1
Affected by 4 other vulnerabilities.

VCID-car8-7w1p-2uhx
Aliases:
CVE-2015-8367

Multiple vulnerabilities have been found in LibRaw, the worst of which may allow attackers to execute arbitrary code.

2.2.1-3~bpo8+1
Affected by 1 other vulnerability.

VCID-ngzk-excs-akbw
Aliases:
CVE-2013-1439

Multiple vulnerabilities have been found in LibRaw and libkdcraw, the worst of which may lead to arbitrary code execution.

1.4.2-1~bpo70+1
Affected by 4 other vulnerabilities.

VCID-qncn-bvgd-r3eq
Aliases:
CVE-2013-2126

Multiple vulnerabilities have been found in LibRaw and libkdcraw, the worst of which may lead to arbitrary code execution.

1.4.2-1~bpo70+1
Affected by 4 other vulnerabilities.

VCID-xswq-6aae-nqfb
Aliases:
CVE-2015-3885

A buffer overflow in DCRaw might allow remote attackers to cause a Denial of Service condition.

2.2.1-3~bpo8+1
Affected by 1 other vulnerability.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T01:05:26.852969+00:00	Debian Oval Importer	Affected by	VCID-5qx5-u16v-vfgz	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T23:22:14.369333+00:00	Debian Oval Importer	Affected by	VCID-qncn-bvgd-r3eq	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T22:18:24.444803+00:00	Debian Oval Importer	Affected by	VCID-xswq-6aae-nqfb	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T21:26:46.509052+00:00	Debian Oval Importer	Affected by	VCID-4cdx-cccn-q3ca	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T20:11:43.581814+00:00	Debian Oval Importer	Affected by	VCID-car8-7w1p-2uhx	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:37:13.832370+00:00	Debian Oval Importer	Affected by	VCID-c7f1-d627-z3dm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:09:01.894906+00:00	Debian Oval Importer	Affected by	VCID-ngzk-excs-akbw	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-12T00:37:28.208731+00:00	Debian Oval Importer	Affected by	VCID-5qx5-u16v-vfgz	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T22:57:45.717689+00:00	Debian Oval Importer	Affected by	VCID-qncn-bvgd-r3eq	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T21:55:55.087226+00:00	Debian Oval Importer	Affected by	VCID-xswq-6aae-nqfb	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T21:06:03.707969+00:00	Debian Oval Importer	Affected by	VCID-4cdx-cccn-q3ca	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T19:53:29.744319+00:00	Debian Oval Importer	Affected by	VCID-car8-7w1p-2uhx	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:21:48.800128+00:00	Debian Oval Importer	Affected by	VCID-c7f1-d627-z3dm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:54:34.138858+00:00	Debian Oval Importer	Affected by	VCID-ngzk-excs-akbw	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-09T00:07:29.019462+00:00	Debian Oval Importer	Affected by	VCID-5qx5-u16v-vfgz	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T22:32:01.218037+00:00	Debian Oval Importer	Affected by	VCID-qncn-bvgd-r3eq	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T21:33:12.802641+00:00	Debian Oval Importer	Affected by	VCID-xswq-6aae-nqfb	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T20:45:10.055542+00:00	Debian Oval Importer	Affected by	VCID-4cdx-cccn-q3ca	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T19:35:38.911074+00:00	Debian Oval Importer	Affected by	VCID-car8-7w1p-2uhx	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T18:07:49.693478+00:00	Debian Oval Importer	Affected by	VCID-c7f1-d627-z3dm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:41:25.500008+00:00	Debian Oval Importer	Affected by	VCID-ngzk-excs-akbw	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0