Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libraw libraw vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2020-22628
Buffer Overflow vulnerability in LibRaw::stretch() function in libraw\src\postprocessing\aspect_ratio.cpp.
Libraw Libraw
NA
CVE-2023-1729
A flaw was found in LibRaw. A heap-buffer-overflow in raw2image_ex() caused by a maliciously crafted file may lead to an application crash.
Libraw Libraw
Fedoraproject Fedora 37
Fedoraproject Fedora 38
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux 9.0
NA
CVE-2021-32142
Buffer Overflow vulnerability in LibRaw linux/unix v0.20.0 allows malicious user to escalate privileges via the LibRaw_buffer_datastream::gets(char*, int) in /src/libraw/src/libraw_datastream.cpp.
Libraw Libraw 0.20.0
NA
CVE-2020-35533
In LibRaw, an out-of-bounds read vulnerability exists within the "LibRaw::adobe_copy_pixel()" function (libraw\src\decoders\dng.cpp) when reading data from the image file.
Libraw Libraw 0.20.1
Libraw Libraw 0.21.0
Libraw Libraw 0.20.2
Libraw Libraw 0.20.0
Debian Debian Linux 10.0
NA
CVE-2020-35530
In LibRaw, there is an out-of-bounds write vulnerability within the "new_node()" function (libraw\src\x3f\x3f_utils_patched.cpp) that can be triggered via a crafted X3F file.
Libraw Libraw 0.20.1
Libraw Libraw 0.21.0
Libraw Libraw 0.20.2
Libraw Libraw 0.20.0
Debian Debian Linux 10.0
NA
CVE-2020-35531
In LibRaw, an out-of-bounds read vulnerability exists within the get_huffman_diff() function (libraw\src\x3f\x3f_utils_patched.cpp) when reading data from an image file.
Libraw Libraw 0.20.1
Libraw Libraw 0.21.0
Libraw Libraw 0.20.2
Libraw Libraw 0.20.0
Debian Debian Linux 10.0
NA
CVE-2020-35532
In LibRaw, an out-of-bounds read vulnerability exists within the "simple_decode_row()" function (libraw\src\x3f\x3f_utils_patched.cpp) which can be triggered via an image with a large row_stride field.
Libraw Libraw 0.20.1
Libraw Libraw 0.21.0
Libraw Libraw 0.20.2
Libraw Libraw 0.20.0
Debian Debian Linux 10.0
NA
CVE-2020-35534
In LibRaw, there is a memory corruption vulnerability within the "crxFreeSubbandData()" function (libraw\src\decoders\crx.cpp) when processing cr3 files.
Libraw Libraw 0.20.1
Libraw Libraw 0.21.0
Libraw Libraw 0.20.2
Libraw Libraw 0.20.0
NA
CVE-2020-35535
In LibRaw, there is an out-of-bounds read vulnerability within the "LibRaw::parseSonySRF()" function (libraw\src\metadata\sony.cpp) when processing srf files.
Libraw Libraw 0.20.1
Libraw Libraw 0.21.0
Libraw Libraw 0.20.2
Libraw Libraw 0.20.0
605
VMScore
CVE-2020-24870
Libraw prior to 0.20.1 has a stack buffer overflow via LibRaw::identify_process_dng_fields in identify.cpp.
Libraw Libraw
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4644
unprivileged
CVE-2024-3494
CVE-2024-22460
CVE-2024-26026
CVE-2024-23473
firewall
CVE-2024-28889
XML external entity
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »