Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/rawtherapee@5.8-3?distro=trixie
purl pkg:deb/debian/rawtherapee@5.8-3?distro=trixie
Next non-vulnerable version 5.12-1
Latest non-vulnerable version 5.12-2
Risk 3.8
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-441f-fn3d-f3hb
Aliases:
CVE-2026-24808
Integer Overflow or Wraparound vulnerability in RawTherapee (rtengine modules). This vulnerability is associated with program files dcraw.Cc. This issue affects RawTherapee: through 5.11.
5.12-1
Affected by 0 other vulnerabilities.
5.12-2
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (4)
Vulnerability Summary Aliases
VCID-5qx5-u16v-vfgz Multiple vulnerabilities have been found in LibRaw, the worst of which may allow attackers to execute arbitrary code. CVE-2015-8366
VCID-c7f1-d627-z3dm Multiple vulnerabilities have been found in LibRaw and libkdcraw, the worst of which may lead to arbitrary code execution. CVE-2013-1438
VCID-car8-7w1p-2uhx Multiple vulnerabilities have been found in LibRaw, the worst of which may allow attackers to execute arbitrary code. CVE-2015-8367
VCID-xswq-6aae-nqfb A buffer overflow in DCRaw might allow remote attackers to cause a Denial of Service condition. CVE-2015-3885

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T12:07:54.343625+00:00 Debian Importer Fixing VCID-xswq-6aae-nqfb https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:57:12.534245+00:00 Debian Importer Fixing VCID-car8-7w1p-2uhx https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:23:06.736948+00:00 Debian Importer Fixing VCID-5qx5-u16v-vfgz https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:47:26.135415+00:00 Debian Importer Fixing VCID-c7f1-d627-z3dm https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-13T08:17:45.802811+00:00 Debian Importer Fixing VCID-xswq-6aae-nqfb https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:09:36.113630+00:00 Debian Importer Fixing VCID-car8-7w1p-2uhx https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:59:51.714742+00:00 Debian Importer Fixing VCID-5qx5-u16v-vfgz https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:54:19.876293+00:00 Debian Importer Fixing VCID-c7f1-d627-z3dm https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-03T07:51:51.498996+00:00 Debian Importer Affected by VCID-441f-fn3d-f3hb https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:51:51.466651+00:00 Debian Importer Fixing VCID-car8-7w1p-2uhx https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:51:51.412534+00:00 Debian Importer Fixing VCID-5qx5-u16v-vfgz https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:51:51.366107+00:00 Debian Importer Fixing VCID-xswq-6aae-nqfb https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:51:51.320082+00:00 Debian Importer Fixing VCID-c7f1-d627-z3dm https://security-tracker.debian.org/tracker/data/json 38.1.0