Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libraw libraw 0.20.1 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2020-35534
In LibRaw, there is a memory corruption vulnerability within the "crxFreeSubbandData()" function (libraw\src\decoders\crx.cpp) when processing cr3 files.
Libraw Libraw 0.20.1
Libraw Libraw 0.21.0
Libraw Libraw 0.20.2
Libraw Libraw 0.20.0
NA
CVE-2020-35535
In LibRaw, there is an out-of-bounds read vulnerability within the "LibRaw::parseSonySRF()" function (libraw\src\metadata\sony.cpp) when processing srf files.
Libraw Libraw 0.20.1
Libraw Libraw 0.21.0
Libraw Libraw 0.20.2
Libraw Libraw 0.20.0
NA
CVE-2020-35530
In LibRaw, there is an out-of-bounds write vulnerability within the "new_node()" function (libraw\src\x3f\x3f_utils_patched.cpp) that can be triggered via a crafted X3F file.
Libraw Libraw 0.20.1
Libraw Libraw 0.21.0
Libraw Libraw 0.20.2
Libraw Libraw 0.20.0
Debian Debian Linux 10.0
NA
CVE-2020-35531
In LibRaw, an out-of-bounds read vulnerability exists within the get_huffman_diff() function (libraw\src\x3f\x3f_utils_patched.cpp) when reading data from an image file.
Libraw Libraw 0.20.1
Libraw Libraw 0.21.0
Libraw Libraw 0.20.2
Libraw Libraw 0.20.0
Debian Debian Linux 10.0
NA
CVE-2020-35532
In LibRaw, an out-of-bounds read vulnerability exists within the "simple_decode_row()" function (libraw\src\x3f\x3f_utils_patched.cpp) which can be triggered via an image with a large row_stride field.
Libraw Libraw 0.20.1
Libraw Libraw 0.21.0
Libraw Libraw 0.20.2
Libraw Libraw 0.20.0
Debian Debian Linux 10.0
NA
CVE-2020-35533
In LibRaw, an out-of-bounds read vulnerability exists within the "LibRaw::adobe_copy_pixel()" function (libraw\src\decoders\dng.cpp) when reading data from the image file.
Libraw Libraw 0.20.1
Libraw Libraw 0.21.0
Libraw Libraw 0.20.2
Libraw Libraw 0.20.0
Debian Debian Linux 10.0
605
VMScore
CVE-2020-24870
Libraw prior to 0.20.1 has a stack buffer overflow via LibRaw::identify_process_dng_fields in identify.cpp.
Libraw Libraw
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
remote code execution
CVE-2024-34909
CVE-2024-3317
SSTI
CVE-2024-3400
CVE-2024-30051
wireless
CVE-2024-4622
CVE-2024-4908
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started