Linux Distros Unpatched Vulnerability : CVE-2026-5342

🗓️ 03 Apr 2026 00:00:00Reported by TenableType
LibRaw up to 0.22.0 permits remote out-of-bounds read in Nikon NEF; upgrade to 0.22.1.
Reporter	Title	Published	Views	Family All 66
ATTACKERKB	CVE-2026-5342	2 Apr 202614:30	–	attackerkb
AlpineLinux	CVE-2026-5342	2 Apr 202614:30	–	alpinelinux
CNNVD	Libraw 缓冲区错误漏洞	2 Apr 202600:00	–	cnnvd
CVE	CVE-2026-5342	2 Apr 202614:30	–	cve
Cvelist	CVE-2026-5342 LibRaw TIFF/NEF decoders_libraw.cpp nikon_load_padded_packed_raw out-of-bounds	2 Apr 202614:30	–	cvelist
Debian CVE	CVE-2026-5342	2 Apr 202614:30	–	debiancve
EUVD	EUVD-2026-18344	2 Apr 202615:31	–	euvd
Fedora	[SECURITY] Fedora 44 Update: kf6-kimageformats-6.24.0-3.fc44	13 Apr 202621:07	–	fedora
Fedora	[SECURITY] Fedora 44 Update: efl-1.28.1-6.fc44	13 Apr 202621:07	–	fedora
Fedora	[SECURITY] Fedora 44 Update: shotwell-33~alpha-9.fc44	13 Apr 202621:07	–	fedora
Source	Link
access	www.access.redhat.com/security/cve/cve-2026-5342
security-tracker	www.security-tracker.debian.org/tracker/CVE-2026-5342
ubuntu	www.ubuntu.com/security/CVE-2026-5342
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(304755);
  script_version("1.12");
  script_set_attribute(attribute:"plugin_modification_date", value:"2026/05/21");

  script_cve_id("CVE-2026-5342");

  script_name(english:"Linux Distros Unpatched Vulnerability : CVE-2026-5342");

  script_set_attribute(attribute:"synopsis", value:
"The Linux/Unix host has one or more packages installed with a vulnerability that the vendor indicates will not be
patched.");
  script_set_attribute(attribute:"description", value:
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied
patch available.

  - A flaw has been found in LibRaw up to 0.22.0. This affects the function
    LibRaw::nikon_load_padded_packed_raw of the file src/decoders/decoders_libraw.cpp of the component
    TIFF/NEF. Executing a manipulation of the argument load_flags/raw_width can lead to out-of-bounds read. It
    is possible to launch the attack remotely. The exploit has been published and may be used. Upgrading to
    version 0.22.1 mitigates this issue. This patch is called b8397cd45657b84e88bd1202528d1764265f185c. It is
    advisable to upgrade the affected component. (CVE-2026-5342)

Note that Nessus relies on the presence of the package as reported by the vendor.");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/cve-2026-5342");
  script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/CVE-2026-5342");
  script_set_attribute(attribute:"see_also", value:"https://ubuntu.com/security/CVE-2026-5342");
  script_set_attribute(attribute:"solution", value:
"There is no known solution at this time.");
  script_set_attribute(attribute:"agent", value:"unix");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:U/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:U/RC:C");
  script_set_attribute(attribute:"cvss4_vector", value:"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N");
  script_set_attribute(attribute:"cvss4_threat_vector", value:"CVSS:4.0/E:P");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2026-5342");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"vendor_unpatched", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2026/04/02");
  script_set_attribute(attribute:"plugin_publication_date", value:"2026/04/03");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:16.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:18.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:20.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:22.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:24.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:25.10");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:centos:centos:7");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:centos:centos:8");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:11.0");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:12.0");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:13.0");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:8");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:9");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:darktable");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:dcraw");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:digikam");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:exactimage");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:kodi");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libraw");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:rawtherapee");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:ufraw");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:LibRaw");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:LibRaw-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:LibRaw-static");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libraw1394");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:libraw1394-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libraw");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:LibRaw");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:LibRaw-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:LibRaw-static");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libraw1394");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libraw1394-devel");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Misc.");

  script_copyright(english:"This script is Copyright (C) 2026 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info2.nasl", "set_linux_os_id.nasl");
  script_require_keys("Host/cpu", "Host/local_checks_enabled", "global_settings/vendor_unpatched", "Host/OS/identifier");
  script_require_ports("Host/OS/CentOS Linux-7", "Host/OS/CentOS Linux-8", "Host/OS/Debian Linux-11", "Host/OS/Debian Linux-12", "Host/OS/Debian Linux-13", "Host/OS/Red Hat Enterprise Linux-7", "Host/OS/Red Hat Enterprise Linux-8", "Host/OS/Red Hat Enterprise Linux-9", "Host/OS/Ubuntu Linux-16.04", "Host/OS/Ubuntu Linux-18.04", "Host/OS/Ubuntu Linux-20.04", "Host/OS/Ubuntu Linux-22.04", "Host/OS/Ubuntu Linux-24.04", "Host/OS/Ubuntu Linux-25.10");

  exit(0);
}

if (!get_kb_item("global_settings/vendor_unpatched")) exit(0, "Unpatched Vulnerabilities Detection not active.");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (empty_or_null(get_one_kb_item("Host/CentOS/rpm-list")) && empty_or_null(get_one_kb_item("Host/Debian/dpkg-l")) && empty_or_null(get_one_kb_item("Host/RedHat/rpm-list"))) audit(AUDIT_PACKAGE_LIST_MISSING);

include('linux_unpatched.inc');

var distro_constraints_array = {
  "Debian Linux-11": {
    "package_manager": "dpkg-l",
    "constraints": [
      {
        "release": "11",
        "pkgs": [
          {"reference": "libraw-bin"},
          {"reference": "libraw-dev"},
          {"reference": "libraw-doc"},
          {"reference": "libraw20"}
        ]
      }
    ]
  },
  "Debian Linux-12": {
    "package_manager": "dpkg-l",
    "constraints": [
      {
        "release": "12",
        "pkgs": [
          {"reference": "libraw-bin"},
          {"reference": "libraw-dev"},
          {"reference": "libraw-doc"},
          {"reference": "libraw20"}
        ]
      }
    ]
  },
  "Debian Linux-13": {
    "package_manager": "dpkg-l",
    "constraints": [
      {
        "release": "13",
        "pkgs": [
          {"reference": "libraw-bin"},
          {"reference": "libraw-dev"},
          {"reference": "libraw-doc"},
          {"reference": "libraw23t64"}
        ]
      }
    ]
  },
  "Ubuntu Linux-16.04": {
    "package_manager": "dpkg-l",
    "constraints": [
      {
        "release": "16.04",
        "pkgs": [
          {"reference": "darktable"},
          {"reference": "dcraw"},
          {"reference": "digikam"},
          {"reference": "exactimage"},
          {"reference": "kodi"},
          {"reference": "rawtherapee"},
          {"reference": "ufraw"}
        ]
      }
    ]
  },
  "Ubuntu Linux-18.04": {
    "package_manager": "dpkg-l",
    "constraints": [
      {
        "release": "18.04",
        "pkgs": [
          {"reference": "darktable"},
          {"reference": "dcraw"},
          {"reference": "digikam"},
          {"reference": "exactimage"},
          {"reference": "kodi"},
          {"reference": "rawtherapee"},
          {"reference": "ufraw"}
        ]
      }
    ]
  },
  "Ubuntu Linux-20.04": {
    "package_manager": "dpkg-l",
    "constraints": [
      {
        "release": "20.04",
        "pkgs": [
          {"reference": "darktable"},
          {"reference": "dcraw"},
          {"reference": "digikam"},
          {"reference": "exactimage"},
          {"reference": "kodi"},
          {"reference": "rawtherapee"}
        ]
      }
    ]
  },
  "Ubuntu Linux-22.04": {
    "package_manager": "dpkg-l",
    "constraints": [
      {
        "release": "22.04",
        "pkgs": [
          {"reference": "darktable"},
          {"reference": "dcraw"},
          {"reference": "digikam"},
          {"reference": "exactimage"},
          {"reference": "kodi"},
          {"reference": "libraw-bin"},
          {"reference": "libraw-dev"},
          {"reference": "libraw-doc"},
          {"reference": "libraw20"},
          {"reference": "rawtherapee"}
        ]
      }
    ]
  },
  "Ubuntu Linux-24.04": {
    "package_manager": "dpkg-l",
    "constraints": [
      {
        "release": "24.04",
        "pkgs": [
          {"reference": "darktable"},
          {"reference": "dcraw"},
          {"reference": "digikam"},
          {"reference": "exactimage"},
          {"reference": "kodi"},
          {"reference": "libraw-bin"},
          {"reference": "libraw-dev"},
          {"reference": "libraw-doc"},
          {"reference": "libraw23t64"},
          {"reference": "rawtherapee"}
        ]
      }
    ]
  },
  "Ubuntu Linux-25.10": {
    "package_manager": "dpkg-l",
    "constraints": [
      {
        "release": "25.10",
        "pkgs": [
          {"reference": "darktable"},
          {"reference": "dcraw"},
          {"reference": "digikam"},
          {"reference": "exactimage"},
          {"reference": "kodi"},
          {"reference": "libraw-bin"},
          {"reference": "libraw-dev"},
          {"reference": "libraw-doc"},
          {"reference": "libraw23t64"},
          {"reference": "rawtherapee"}
        ]
      }
    ]
  },
  "CentOS Linux-7": {
    "package_manager": "rpm-list",
    "constraints": [
      {
        "release": "7",
        "pkgs": [
          {"reference": "LibRaw"},
          {"reference": "LibRaw-devel"},
          {"reference": "LibRaw-static"},
          {"reference": "libraw1394"},
          {"reference": "libraw1394-devel"}
        ]
      }
    ]
  },
  "Red Hat Enterprise Linux-7": {
    "package_manager": "rpm-list",
    "constraints": [
      {
        "release": "7",
        "pkgs": [
          {"reference": "LibRaw"},
          {"reference": "LibRaw-devel"},
          {"reference": "LibRaw-static"},
          {"reference": "libraw1394"},
          {"reference": "libraw1394-devel"}
        ]
      }
    ]
  },
  "CentOS Linux-8": {
    "package_manager": "rpm-list",
    "constraints": [
      {
        "release": "8",
        "pkgs": [
          {"reference": "LibRaw"},
          {"reference": "LibRaw-devel"},
          {"reference": "libraw1394"},
          {"reference": "libraw1394-devel"}
        ]
      }
    ]
  },
  "Red Hat Enterprise Linux-8": {
    "package_manager": "rpm-list",
    "constraints": [
      {
        "release": "8",
        "pkgs": [
          {"reference": "LibRaw"},
          {"reference": "LibRaw-devel"},
          {"reference": "libraw1394"},
          {"reference": "libraw1394-devel"}
        ]
      }
    ]
  },
  "Red Hat Enterprise Linux-9": {
    "package_manager": "rpm-list",
    "constraints": [
      {
        "release": "9",
        "pkgs": [
          {"reference": "LibRaw"},
          {"reference": "LibRaw-devel"}
        ]
      }
    ]
  }
};

var distro_constraints_values = linux_unpatched::get_distro_constraints(distro_constraints_arr:distro_constraints_array);
if (empty_or_null(distro_constraints_values)) audit(AUDIT_HOST_NOT, 'affected');
var report = linux_unpatched::check_unpatched_constraints(distro_constraints_values:distro_constraints_values);

if (!empty_or_null(report))
{
  security_report_v4(
      port       : 0,
      severity   : SECURITY_WARNING,
      extra      : report
  );
  exit(0);
}
else
{
  audit(AUDIT_HOST_NOT, 'affected');
}
21 May 2026 00:00Current
5.6Medium risk
Vulners AI Score5.6
CVSS 25
CVSS 3.15.3
CVSS 46.9
CVSS 35.3
EPSS0.00058
SSVC