Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libraw libraw 0.20.1 vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2020-35535
In LibRaw, there is an out-of-bounds read vulnerability within the "LibRaw::parseSonySRF()" function (libraw\src\metadata\sony.cpp) when processing srf files.
Libraw Libraw 0.20.1
Libraw Libraw 0.21.0
Libraw Libraw 0.20.2
Libraw Libraw 0.20.0
5.5
CVSSv3
CVE-2020-35534
In LibRaw, there is a memory corruption vulnerability within the "crxFreeSubbandData()" function (libraw\src\decoders\crx.cpp) when processing cr3 files.
Libraw Libraw 0.20.1
Libraw Libraw 0.21.0
Libraw Libraw 0.20.2
Libraw Libraw 0.20.0
5.5
CVSSv3
CVE-2020-35530
In LibRaw, there is an out-of-bounds write vulnerability within the "new_node()" function (libraw\src\x3f\x3f_utils_patched.cpp) that can be triggered via a crafted X3F file.
Libraw Libraw 0.20.1
Libraw Libraw 0.21.0
Libraw Libraw 0.20.2
Libraw Libraw 0.20.0
Debian Debian Linux 10.0
5.5
CVSSv3
CVE-2020-35531
In LibRaw, an out-of-bounds read vulnerability exists within the get_huffman_diff() function (libraw\src\x3f\x3f_utils_patched.cpp) when reading data from an image file.
Libraw Libraw 0.20.1
Libraw Libraw 0.21.0
Libraw Libraw 0.20.2
Libraw Libraw 0.20.0
Debian Debian Linux 10.0
5.5
CVSSv3
CVE-2020-35533
In LibRaw, an out-of-bounds read vulnerability exists within the "LibRaw::adobe_copy_pixel()" function (libraw\src\decoders\dng.cpp) when reading data from the image file.
Libraw Libraw 0.20.1
Libraw Libraw 0.21.0
Libraw Libraw 0.20.2
Libraw Libraw 0.20.0
Debian Debian Linux 10.0
5.5
CVSSv3
CVE-2020-35532
In LibRaw, an out-of-bounds read vulnerability exists within the "simple_decode_row()" function (libraw\src\x3f\x3f_utils_patched.cpp) which can be triggered via an image with a large row_stride field.
Libraw Libraw 0.20.1
Libraw Libraw 0.21.0
Libraw Libraw 0.20.2
Libraw Libraw 0.20.0
Debian Debian Linux 10.0
8.8
CVSSv3
CVE-2020-24870
Libraw prior to 0.20.1 has a stack buffer overflow via LibRaw::identify_process_dng_fields in identify.cpp.
Libraw Libraw
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
race condition
CVE-2024-4249
CVE-2024-4244
CVE-2023-20198
TCP
CVE-2022-48648
CVE-2022-48636
CVE-2024-21345
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started