Lucene search
K

8 matches found

Amazon
Amazon
added 2026/04/30 12:0 a.m.10 views

Important: LibRaw

Issue Overview: An integer overflow vulnerability exists in the deflatedngloadraw functionality of LibRaw. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability. CVE-2026-20884 A heap-based buffer overflow...

9.8CVSS5.9AI score0.00564EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2026/04/30 12:0 a.m.6 views

Amazon Linux 2 : LibRaw, --advisory ALAS2-2026-3258 (ALAS-2026-3258)

The version of LibRaw installed on the remote host is prior to 0.19.4-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2026-3258 advisory. An integer overflow vulnerability exists in the deflatedngloadraw functionality of LibRaw. A specially crafted malicious...

9.8CVSS6.2AI score0.00564EPSS
Exploits2References6
SUSE Linux
SUSE Linux
added 2026/04/22 4:24 p.m.4 views

Security update for libraw

This update for libraw fixes the following issues: CVE-2026-5342: out-of-bounds read via LibRaw::nikonloadpaddedpackedraw bsc1261499. CVE-2026-20884: integer overflow and heap buffer overflow via deflatedngloadraw bsc1261671. CVE-2026-20889: heap-based buffer overflow in x3fthumbloaderbsc1261672...

9.2CVSS6AI score0.00746EPSS
Exploits6References24
Snyk
Snyk
added 2026/04/07 6:14 p.m.4 views

Integer Overflow or Wraparound

Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound in the deflatedngloadraw process. An attacker can cause a heap buffer overflow by supplying a specially crafted file. Remediation Upgrade libraw to version 0.22.1 or higher. References - GitHub Commit -...

9.8CVSS6AI score0.00454EPSS
Exploits1References2
OSV
OSV
added 2026/04/07 3:17 p.m.3 views

DEBIAN-CVE-2026-20884

An integer overflow vulnerability exists in the deflatedngloadraw functionality of LibRaw Commit 8dc68e2. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS5.9AI score0.00454EPSS
Exploits1References1
OSV
OSV
added 2026/04/07 3:17 p.m.5 views

UBUNTU-CVE-2026-20884

An integer overflow vulnerability exists in the deflatedngloadraw functionality of LibRaw Commit 8dc68e2. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS6.2AI score0.00454EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/04/07 1:49 p.m.5 views

CVE-2026-20884

An integer overflow vulnerability exists in the deflatedngloadraw functionality of LibRaw Commit 8dc68e2. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

8.1CVSS6.2AI score0.00454EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/04/07 12:0 a.m.6 views

Libraw 安全漏洞

Libraw is a C++ library developed by Libraw Inc. that processes RAW CRW/CR2, NEF, RAF, DNG, and other formats images. It supports various operating systems. Libraw has a security vulnerability, which stems from an integer overflow in the deflatedngloadraw function, potentially leading to a heap...

9.8CVSS6.4AI score0.00454EPSS
Exploits1References1
Rows per page
Query Builder