Commit Graph

2 Commits

Author SHA1 Message Date
Ninette Adhikari 0d244743de libraw: CVE status update for CVE-2020-22628 and CVE-2023-1729
The current version (0.21.2) is not affected by the CVE which affects versions earlier than 0.21.2.

Signed-off-by: Ninette Adhikari <ninette@thehoodiefirm.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2024-06-28 11:22:03 -07:00
Wang Mingyu 204e694ac2 libraw: upgrade 0.21.1 -> 0.21.2
Changelog
========
* New compile-defined limit LIBRAW_MAX_PROFILE_SIZE_MB:
  limits allocation/read size for embedded color profile (default: 256Mb)
* Embedded color profile allocation/read size: limited by input file size.
* Multiple fixes (mostly inspired by oss-fuzz) to improve library stability and/or input checks.
* raw-identify: use fallback if PATH_MAX not available
* Disabled color conversion for Canon 16-bit thumbnails
* docs/changelog: explained the case when no thumbnail is found in specific file
* swapXX renamed to libraw_swapXX to avoid name conflict
* better striped thumbnails handling

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2024-01-08 19:54:42 -08:00