Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/rawtherapee@5.9-1?distro=trixie
purl pkg:deb/debian/rawtherapee@5.9-1?distro=trixie
Next non-vulnerable version 5.12-1
Latest non-vulnerable version 5.12-2
Risk 3.8
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-441f-fn3d-f3hb
Aliases:
CVE-2026-24808
Integer Overflow or Wraparound vulnerability in RawTherapee (rtengine modules). This vulnerability is associated with program files dcraw.Cc. This issue affects RawTherapee: through 5.11.
5.12-1
Affected by 0 other vulnerabilities.
5.12-2
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (4)
Vulnerability Summary Aliases
VCID-5qx5-u16v-vfgz Multiple vulnerabilities have been found in LibRaw, the worst of which may allow attackers to execute arbitrary code. CVE-2015-8366
VCID-c7f1-d627-z3dm Multiple vulnerabilities have been found in LibRaw and libkdcraw, the worst of which may lead to arbitrary code execution. CVE-2013-1438
VCID-car8-7w1p-2uhx Multiple vulnerabilities have been found in LibRaw, the worst of which may allow attackers to execute arbitrary code. CVE-2015-8367
VCID-xswq-6aae-nqfb A buffer overflow in DCRaw might allow remote attackers to cause a Denial of Service condition. CVE-2015-3885

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T12:07:54.348534+00:00 Debian Importer Fixing VCID-xswq-6aae-nqfb https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:57:12.539388+00:00 Debian Importer Fixing VCID-car8-7w1p-2uhx https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:23:06.742617+00:00 Debian Importer Fixing VCID-5qx5-u16v-vfgz https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:47:26.137863+00:00 Debian Importer Fixing VCID-c7f1-d627-z3dm https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-13T08:17:45.808103+00:00 Debian Importer Fixing VCID-xswq-6aae-nqfb https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:09:36.118807+00:00 Debian Importer Fixing VCID-car8-7w1p-2uhx https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:59:51.719581+00:00 Debian Importer Fixing VCID-5qx5-u16v-vfgz https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:54:19.881594+00:00 Debian Importer Fixing VCID-c7f1-d627-z3dm https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-03T07:51:51.502855+00:00 Debian Importer Affected by VCID-441f-fn3d-f3hb https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:51:51.453136+00:00 Debian Importer Fixing VCID-car8-7w1p-2uhx https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:51:51.398226+00:00 Debian Importer Fixing VCID-5qx5-u16v-vfgz https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:51:51.351822+00:00 Debian Importer Fixing VCID-xswq-6aae-nqfb https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:51:51.304635+00:00 Debian Importer Fixing VCID-c7f1-d627-z3dm https://security-tracker.debian.org/tracker/data/json 38.1.0