Lucene search
K

6 matches found

RedHat Linux
RedHat Linux
added 2026/05/19 9:53 p.m.10 views

LibRaw: LibRaw: Arbitrary code execution via heap-based buffer overflow in lossless JPEG loading

A flaw was found in LibRaw. A heap-based buffer overflow vulnerability exists in the losslessjpegloadraw functionality. A remote attacker can exploit this by providing a specially crafted malicious file. This can lead to arbitrary code execution, allowing the attacker to take control of the...

9.8CVSS6.5AI score0.00746EPSS
Exploits1References5
SUSE Linux
SUSE Linux
added 2026/04/17 1:39 p.m.3 views

Security update for libraw

This update for libraw fixes the following issues: CVE-2026-20911: heap-based buffer overflow in HuffTable::initvalbsc1261673. CVE-2026-21413: heap-based buffer overflow in losslessjpegloadraw bsc1261674. CVE-2026-24660: heap-based buffer overflow in x3floadhuffman bsc1261676. Patch Instructions:...

7.7CVSS6.3AI score0.00746EPSS
Exploits3References12
Snyk
Snyk
added 2026/04/07 4:15 p.m.3 views

Improper Validation of Array Index

Overview Affected versions of this package are vulnerable to Improper Validation of Array Index in the losslessjpegloadraw function. An attacker can execute arbitrary code or cause a denial of service by supplying a specially crafted file. Remediation Upgrade libraw to version 0.22.1 or higher...

9.8CVSS6.1AI score0.00746EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2026/04/07 3:17 p.m.4 views

CVE-2026-21413

A heap-based buffer overflow vulnerability exists in the losslessjpegloadraw functionality of LibRaw Commit 0b56545 and Commit d20315b. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS6.1AI score0.00746EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/04/07 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2026-21413

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap-based buffer overflow vulnerability exists in the losslessjpegloadraw functionality of LibRaw Commit 0b56545 and Commit d20315b. A specially crafted...

9.8CVSS6.3AI score0.00746EPSS
Exploits1References4
Talos
Talos
added 2026/04/07 12:0 a.m.7 views

LibRaw lossless_jpeg_load_raw heap-based buffer overflow vulnerability

Talos Vulnerability Report TALOS-2026-2331 LibRaw losslessjpegloadraw heap-based buffer overflow vulnerability April 7, 2026 CVE Number CVE-2026-21413 SUMMARY A heap-based buffer overflow vulnerability exists in the losslessjpegloadraw functionality of LibRaw Commit 0b56545 and Commit d20315b. A...

9.8CVSS6.4AI score0.00746EPSS
Exploits1
Rows per page
Query Builder