This update for libraw fixes the following issues:
CVE-2015-3885: A specially crafted raw image file could have caused a Denial of Service through an integer overflow. (bsc#930683)
CVE-2015-8367: The function phaseonecorrect() did not handle memory object initialization correctly, which may have caused some other problems. (bsc#957517)
CVE-2017-6886: memory corruption in parsetiffifd() func (internal/dcraw_common.cpp) could lead to Denial of service (bsc#1039380)
CVE-2017-6889: integer overflow error within the 'foveonloadcamf()' function (dcraw_foveon.c) could lead to Denial of service (bsc#1039210)
CVE-2017-6890: boundary error within the 'foveonloadcamf()' function (dcraw_foveon.c) (bsc#1039209)