Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

libraw libraw 0.20.1 vulnerabilities and exploits

(subscribe to this query)
5.5
CVSSv3
CVE-2020-35535
In LibRaw, there is an out-of-bounds read vulnerability within the "LibRaw::parseSonySRF()" function (libraw\src\metadata\sony.cpp) when processing srf files.
Libraw Libraw 0.20.1Libraw Libraw 0.21.0Libraw Libraw 0.20.2Libraw Libraw 0.20.0
5.5
CVSSv3
CVE-2020-35534
In LibRaw, there is a memory corruption vulnerability within the "crxFreeSubbandData()" function (libraw\src\decoders\crx.cpp) when processing cr3 files.
Libraw Libraw 0.20.1Libraw Libraw 0.21.0Libraw Libraw 0.20.2Libraw Libraw 0.20.0
5.5
CVSSv3
CVE-2020-35530
In LibRaw, there is an out-of-bounds write vulnerability within the "new_node()" function (libraw\src\x3f\x3f_utils_patched.cpp) that can be triggered via a crafted X3F file.
Libraw Libraw 0.20.1Libraw Libraw 0.21.0Libraw Libraw 0.20.2Libraw Libraw 0.20.0Debian Debian Linux 10.0
5.5
CVSSv3
CVE-2020-35531
In LibRaw, an out-of-bounds read vulnerability exists within the get_huffman_diff() function (libraw\src\x3f\x3f_utils_patched.cpp) when reading data from an image file.
Libraw Libraw 0.20.1Libraw Libraw 0.21.0Libraw Libraw 0.20.2Libraw Libraw 0.20.0Debian Debian Linux 10.0
5.5
CVSSv3
CVE-2020-35533
In LibRaw, an out-of-bounds read vulnerability exists within the "LibRaw::adobe_copy_pixel()" function (libraw\src\decoders\dng.cpp) when reading data from the image file.
Libraw Libraw 0.20.1Libraw Libraw 0.21.0Libraw Libraw 0.20.2Libraw Libraw 0.20.0Debian Debian Linux 10.0
5.5
CVSSv3
CVE-2020-35532
In LibRaw, an out-of-bounds read vulnerability exists within the "simple_decode_row()" function (libraw\src\x3f\x3f_utils_patched.cpp) which can be triggered via an image with a large row_stride field.
Libraw Libraw 0.20.1Libraw Libraw 0.21.0Libraw Libraw 0.20.2Libraw Libraw 0.20.0Debian Debian Linux 10.0
8.8
CVSSv3
CVE-2020-24870
Libraw prior to 0.20.1 has a stack buffer overflow via LibRaw::identify_process_dng_fields in identify.cpp.
Libraw Libraw
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
race conditionCVE-2024-4249CVE-2024-4244CVE-2023-20198TCPCVE-2022-48648CVE-2022-48636CVE-2024-21345SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook