A flaw was found in LibRaw. A heap-buffer-overflow in raw2image_ex() caused by a maliciously crafted file may lead to an application crash.
Max CVSS
6.5
EPSS Score
0.08%
Published
2023-05-15
Updated
2023-12-22
Buffer Overflow vulnerability in LibRaw linux/unix v0.20.0 allows attacker to escalate privileges via the LibRaw_buffer_datastream::gets(char*, int) in /src/libraw/src/libraw_datastream.cpp.
Max CVSS
7.8
EPSS Score
0.07%
Published
2023-02-17
Updated
2023-05-28
In LibRaw, there is a memory corruption vulnerability within the "crxFreeSubbandData()" function (libraw\src\decoders\crx.cpp) when processing cr3 files.
Max CVSS
5.5
EPSS Score
0.06%
Published
2022-09-01
Updated
2022-09-07
In LibRaw, there is an out-of-bounds write vulnerability within the "new_node()" function (libraw\src\x3f\x3f_utils_patched.cpp) that can be triggered via a crafted X3F file.
Max CVSS
5.5
EPSS Score
0.08%
Published
2022-09-01
Updated
2022-09-29
libraw 20.0 has a null pointer dereference vulnerability in parse_tiff_ifd in src/metadata/tiff.cpp, which may result in context-dependent arbitrary code execution. Note: this vulnerability occurs only if you compile the software in a certain way
Max CVSS
5.5
EPSS Score
0.16%
Published
2020-09-16
Updated
2024-04-11
Libraw before 0.20.1 has a stack buffer overflow via LibRaw::identify_process_dng_fields in identify.cpp.
Max CVSS
8.8
EPSS Score
0.27%
Published
2021-06-02
Updated
2022-12-09
LibRaw before 0.20-Beta3 has an out-of-bounds write in parse_exif() in metadata\exif_gps.cpp via an unrecognized AtomName and a zero value of tiff_nifds.
Max CVSS
6.5
EPSS Score
0.13%
Published
2020-06-28
Updated
2020-07-06
LibRaw::raw2image() in libraw_cxx.cpp has a heap-based buffer overflow.
Max CVSS
6.5
EPSS Score
0.41%
Published
2018-12-22
Updated
2020-08-24
LibRaw::copy_bayer in libraw_cxx.cpp in LibRaw 0.19.1 has a NULL pointer dereference.
Max CVSS
6.5
EPSS Score
0.21%
Published
2018-12-22
Updated
2019-05-21
LibRaw::raw2image in libraw_cxx.cpp in LibRaw 0.19.1 has a NULL pointer dereference.
Max CVSS
6.5
EPSS Score
0.21%
Published
2018-12-22
Updated
2019-05-21
There is a stack-based buffer overflow in the parse_makernote function of dcraw_common.cpp in LibRaw 0.19.1. Crafted input will lead to a denial of service or possibly unspecified other impact.
Max CVSS
8.8
EPSS Score
0.30%
Published
2018-12-21
Updated
2020-08-24
An issue was discovered in LibRaw 0.18.9. There is a stack-based buffer overflow in the utf2char function in libraw_cxx.cpp.
Max CVSS
8.8
EPSS Score
0.47%
Published
2018-04-29
Updated
2020-10-15
An error within the "nikon_coolscan_load_raw()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.9 can be exploited to trigger a NULL pointer dereference.
Max CVSS
6.5
EPSS Score
0.34%
Published
2018-12-07
Updated
2019-01-03
An error within the "rollei_load_raw()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.9 can be exploited to cause a heap-based buffer overflow and subsequently cause a crash.
Max CVSS
8.8
EPSS Score
0.55%
Published
2018-12-07
Updated
2020-08-24
An error within the "LibRaw::parse_exif()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.9 can be exploited to cause a stack-based buffer overflow and subsequently execute arbitrary code.
Max CVSS
8.8
EPSS Score
1.16%
Published
2018-12-07
Updated
2020-08-24
An error within the "find_green()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.9 can be exploited to cause a stack-based buffer overflow and subsequently execute arbitrary code.
Max CVSS
8.8
EPSS Score
0.90%
Published
2018-12-07
Updated
2020-08-24
An error within the "leaf_hdr_load_raw()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.8 can be exploited to trigger a NULL pointer dereference.
Max CVSS
6.5
EPSS Score
0.34%
Published
2018-12-07
Updated
2018-12-28
A boundary error within the "quicktake_100_load_raw()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.8 can be exploited to cause a stack-based buffer overflow and subsequently cause a crash.
Max CVSS
8.8
EPSS Score
0.54%
Published
2018-12-07
Updated
2020-08-24
An error within the "LibRaw::unpack()" function (src/libraw_cxx.cpp) in LibRaw versions prior to 0.18.7 can be exploited to trigger a NULL pointer dereference.
Max CVSS
6.5
EPSS Score
0.66%
Published
2018-12-07
Updated
2019-03-29
An off-by-one error within the "LibRaw::kodak_ycbcr_load_raw()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.7 can be exploited to cause a heap-based buffer overflow and subsequently cause a crash.
Max CVSS
6.5
EPSS Score
1.34%
Published
2018-12-07
Updated
2020-11-20
A boundary error within the "parse_tiff_ifd()" function (internal/dcraw_common.cpp) in LibRaw versions before 0.18.2 can be exploited to cause a memory corruption via e.g. a specially crafted KDC file with model set to "DSLR-A100" and containing multiple sequences of 0x100 and 0x14A TAGs.
Max CVSS
7.8
EPSS Score
0.20%
Published
2017-05-16
Updated
2017-11-04
Multiple double free vulnerabilities in the LibRaw::unpack function in libraw_cxx.cpp in LibRaw before 0.15.2 allow context-dependent attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a malformed full-color (1) Foveon or (2) sRAW image file.
Max CVSS
7.5
EPSS Score
0.44%
Published
2013-08-14
Updated
2018-10-30
The "faster LJPEG decoder" in libraw 0.13.x, 0.14.x, and 0.15.x before 0.15.4 allows context-dependent attackers to cause a denial of service (NULL pointer dereference) via a crafted photo file.
Max CVSS
4.3
EPSS Score
0.23%
Published
2013-09-16
Updated
2013-11-15
23 vulnerabilities found