[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2017-6890":6},{"stargazers_count":4,"fetched_at":5},5,"2026-04-08T14:11:31.067Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":68,"aliases":69,"duplicate_of":9,"upstream":70,"downstream":71,"duplicates":76,"related":77,"reserved_at":9,"published_at":82,"modified_at":83,"state":84,"summary":85,"references_raw":94,"kevs":109,"epss":110,"epss_history":113,"metrics":377,"affected":386},"CVE-2017-6890","A boundary error within the \"foveon_load_camf()\" function (dcraw_foveon.c) when initializing a huffman table in LibRaw-demosaic-pack-GPL2 before 0.18.2 can be exploited to cause a stack-based buffer overflow.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-119","Improper Restriction of Operations within the Bounds of a Memory Buffer","The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.","weakness","Stable","Class","High",[20,24,28,32,36,40,44,48,52,56,60,64],{"id":21,"name":22,"techniques":23},"CAPEC-10","Buffer Overflow via Environment Variables",[],{"id":25,"name":26,"techniques":27},"CAPEC-100","Overflow Buffers",[],{"id":29,"name":30,"techniques":31},"CAPEC-123","Buffer Manipulation",[],{"id":33,"name":34,"techniques":35},"CAPEC-14","Client-side Injection-induced Buffer Overflow",[],{"id":37,"name":38,"techniques":39},"CAPEC-24","Filter Failure through Buffer Overflow",[],{"id":41,"name":42,"techniques":43},"CAPEC-42","MIME Conversion",[],{"id":45,"name":46,"techniques":47},"CAPEC-44","Overflow Binary Resource File",[],{"id":49,"name":50,"techniques":51},"CAPEC-45","Buffer Overflow via Symbolic Links",[],{"id":53,"name":54,"techniques":55},"CAPEC-46","Overflow Variables and Tags",[],{"id":57,"name":58,"techniques":59},"CAPEC-47","Buffer Overflow via Parameter Expansion",[],{"id":61,"name":62,"techniques":63},"CAPEC-8","Buffer Overflow in an API Call",[],{"id":65,"name":66,"techniques":67},"CAPEC-9","Buffer Overflow in Local Command-Line Utilities",[],[],[],[],[72,74],{"_key":73},"SUSE-SU-2017:2300-1",{"_key":75},"OPENSUSE-SU-2024:10980-1",[],[78,80,81],{"_key":79},"MGASA-2017-0223",{"_key":73},{"_key":75},"2017-05-15T18:00:00.000Z","2024-08-05T15:41:17.747Z","Deferred",{"cisa_kev":86,"cisa_ransomware":86,"cisa_vendor":9,"epss_severity":87,"epss_score":88,"severity":89,"severity_score":90,"severity_version":91,"severity_source":92,"severity_vector":93,"severity_status":84},false,"low",0.00436,"critical",9.8,"v3.0","nvd","CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",[95,103],{"url":96,"sources":97,"tags":99},"https://secuniaresearch.flexerasoftware.com/advisories/75000/",[98,92],"cve.org",[100,101,102],"X Refsource MISC","Permissions Required","Third Party Advisory",{"url":104,"sources":105,"tags":106},"https://github.com/LibRaw/LibRaw-demosaic-pack-GPL2/commit/194f592e205990ea8fce72b6c571c14350aca716",[98,92],[107,108,102],"X Refsource CONFIRM","Patch",[],{"date":111,"score":88,"percentile":112},"2026-04-07",0.62938,[114,117,120,123,126,129,132,135,138,141,144,147,150,153,155,158,161,164,167,170,173,176,179,182,185,188,191,194,197,200,203,206,209,211,213,216,219,222,225,228,231,234,237,239,242,245,248,251,254,257,260,263,266,269,272,275,278,281,284,287,290,293,296,299,302,305,308,311,314,317,320,323,326,329,332,335,338,340,343,346,349,352,355,358,360,363,366,369,371,374],{"date":115,"score":88,"percentile":116},"2025-11-04",0.62184,{"date":118,"score":88,"percentile":119},"2025-11-05",0.62171,{"date":121,"score":88,"percentile":122},"2025-11-06",0.62181,{"date":124,"score":88,"percentile":125},"2025-11-07",0.62199,{"date":127,"score":88,"percentile":128},"2025-11-08",0.62204,{"date":130,"score":88,"percentile":131},"2025-11-09",0.62197,{"date":133,"score":88,"percentile":134},"2025-11-10",0.6218,{"date":136,"score":88,"percentile":137},"2025-11-11",0.62192,{"date":139,"score":88,"percentile":140},"2025-11-12",0.62217,{"date":142,"score":88,"percentile":143},"2025-11-13",0.62224,{"date":145,"score":88,"percentile":146},"2025-11-14",0.62234,{"date":148,"score":88,"percentile":149},"2025-11-15",0.62225,{"date":151,"score":88,"percentile":152},"2025-11-16",0.62215,{"date":154,"score":88,"percentile":140},"2025-11-17",{"date":156,"score":88,"percentile":157},"2025-11-18",0.60294,{"date":159,"score":88,"percentile":160},"2025-11-19",0.60305,{"date":162,"score":88,"percentile":163},"2025-11-20",0.60295,{"date":165,"score":88,"percentile":166},"2025-11-21",0.62222,{"date":168,"score":88,"percentile":169},"2025-11-22",0.6223,{"date":171,"score":88,"percentile":172},"2025-11-23",0.6221,{"date":174,"score":88,"percentile":175},"2025-11-24",0.62203,{"date":177,"score":88,"percentile":178},"2025-11-25",0.62211,{"date":180,"score":88,"percentile":181},"2025-11-26",0.62214,{"date":183,"score":88,"percentile":184},"2025-11-27",0.6222,{"date":186,"score":88,"percentile":187},"2025-11-28",0.62201,{"date":189,"score":88,"percentile":190},"2025-11-29",0.62176,{"date":192,"score":88,"percentile":193},"2025-11-30",0.62168,{"date":195,"score":88,"percentile":196},"2025-12-01",0.62328,{"date":198,"score":88,"percentile":199},"2025-12-02",0.62345,{"date":201,"score":88,"percentile":202},"2025-12-03",0.6235,{"date":204,"score":88,"percentile":205},"2025-12-04",0.62177,{"date":207,"score":88,"percentile":208},"2025-12-05",0.62189,{"date":210,"score":88,"percentile":208},"2025-12-06",{"date":212,"score":88,"percentile":122},"2025-12-07",{"date":214,"score":88,"percentile":215},"2025-12-08",0.62187,{"date":217,"score":88,"percentile":218},"2025-12-09",0.62223,{"date":220,"score":88,"percentile":221},"2025-12-10",0.62267,{"date":223,"score":88,"percentile":224},"2025-12-11",0.62286,{"date":226,"score":88,"percentile":227},"2025-12-12",0.6231,{"date":229,"score":88,"percentile":230},"2025-12-13",0.62317,{"date":232,"score":88,"percentile":233},"2025-12-14",0.62318,{"date":235,"score":88,"percentile":236},"2025-12-15",0.62301,{"date":238,"score":88,"percentile":233},"2025-12-16",{"date":240,"score":88,"percentile":241},"2025-12-17",0.6233,{"date":243,"score":88,"percentile":244},"2025-12-18",0.62366,{"date":246,"score":88,"percentile":247},"2025-12-19",0.62378,{"date":249,"score":88,"percentile":250},"2025-12-20",0.6238,{"date":252,"score":88,"percentile":253},"2025-12-21",0.62375,{"date":255,"score":88,"percentile":256},"2025-12-22",0.62368,{"date":258,"score":88,"percentile":259},"2025-12-23",0.62384,{"date":261,"score":88,"percentile":262},"2025-12-24",0.62391,{"date":264,"score":88,"percentile":265},"2025-12-25",0.62423,{"date":267,"score":88,"percentile":268},"2025-12-26",0.6242,{"date":270,"score":88,"percentile":271},"2025-12-27",0.6247,{"date":273,"score":88,"percentile":274},"2025-12-28",0.62398,{"date":276,"score":88,"percentile":277},"2025-12-29",0.62396,{"date":279,"score":88,"percentile":280},"2025-12-30",0.62411,{"date":282,"score":88,"percentile":283},"2025-12-31",0.62433,{"date":285,"score":88,"percentile":286},"2026-01-01",0.62617,{"date":288,"score":88,"percentile":289},"2026-01-02",0.62602,{"date":291,"score":88,"percentile":292},"2026-01-03",0.62601,{"date":294,"score":88,"percentile":295},"2026-01-04",0.62425,{"date":297,"score":88,"percentile":298},"2026-01-05",0.62416,{"date":300,"score":88,"percentile":301},"2026-01-06",0.62412,{"date":303,"score":88,"percentile":304},"2026-01-07",0.62432,{"date":306,"score":88,"percentile":307},"2026-01-08",0.62455,{"date":309,"score":88,"percentile":310},"2026-01-09",0.62459,{"date":312,"score":88,"percentile":313},"2026-01-10",0.62452,{"date":315,"score":88,"percentile":316},"2026-01-11",0.62438,{"date":318,"score":88,"percentile":319},"2026-01-12",0.62418,{"date":321,"score":88,"percentile":322},"2026-01-13",0.62402,{"date":324,"score":88,"percentile":325},"2026-01-14",0.62445,{"date":327,"score":88,"percentile":328},"2026-01-15",0.62463,{"date":330,"score":88,"percentile":331},"2026-01-16",0.62482,{"date":333,"score":88,"percentile":334},"2026-01-17",0.62477,{"date":336,"score":88,"percentile":337},"2026-01-18",0.62474,{"date":339,"score":88,"percentile":307},"2026-01-19",{"date":341,"score":88,"percentile":342},"2026-01-20",0.62471,{"date":344,"score":88,"percentile":345},"2026-01-21",0.62472,{"date":347,"score":88,"percentile":348},"2026-01-22",0.62475,{"date":350,"score":88,"percentile":351},"2026-01-23",0.62509,{"date":353,"score":88,"percentile":354},"2026-01-24",0.62514,{"date":356,"score":88,"percentile":357},"2026-01-25",0.62481,{"date":359,"score":88,"percentile":342},"2026-01-26",{"date":361,"score":88,"percentile":362},"2026-01-27",0.62476,{"date":364,"score":88,"percentile":365},"2026-01-28",0.62489,{"date":367,"score":88,"percentile":368},"2026-01-29",0.62485,{"date":370,"score":88,"percentile":365},"2026-01-30",{"date":372,"score":88,"percentile":373},"2026-01-31",0.62495,{"date":375,"score":88,"percentile":376},"2026-02-01",0.62634,[378],{"source":92,"cvss_v2_0":379,"cvss_v3_0":384,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":380,"baseSeverity":9,"vectorString":381,"impactScore":382,"exploitabilityScore":383},7.5,"AV:N/AC:L/Au:N/C:P/I:P/A:P",6.4,10,{"baseScore":90,"baseSeverity":385,"vectorString":93,"impactScore":90,"exploitabilityScore":383},"CRITICAL",[387],{"ecosystem":9,"name":388,"vendor":389,"product":390,"cpe_part":391,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":392},"LibRaw-demosaic-pack-GPL2","libraw","libraw-demosaic-pack-gpl2","a",[393,399],{"version":394,"is_range":395,"range_type":396,"version_start":9,"version_start_type":9,"version_end":397,"version_end_type":398,"fixed_in":9},"lte0.18.1",true,"cpe","0.18.1","including",{"version":400,"is_range":86,"range_type":98,"version_start":400,"version_start_type":398,"version_end":400,"version_end_type":398,"fixed_in":9},"0.x prior to 0.18.2"]