Unity Linux 20.1050e / 20.1070e Security Update: LibRaw (UTSA-2026-015451)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-015451 advisory. In LibRaw before 0.21.4, tag 0x412 processing in phaseonecorrect in decoders/loadmfbacks.cpp does not enforce minimum w0 and w1 values. Tenable has extracted the...

Astra Linux – Vulnerability in libraw

In LibRaw before 0.21.4, the processing of tag 0x412 in phaseonecorrect in decoders/loadmfbacks.cpp does not enforce minimum w0 and w1 values...

Updated libraw, digikam & darktable packages fix security vulnerabilities

In LibRaw before 0.21.4, metadata/tiff.cpp has an out-of-bounds read in the Fujifilm 0xf00c tag parser. CVE-2025-43961 In LibRaw before 0.21.4, phaseonecorrect in decoders/loadmfbacks.cpp has out-of-bounds reads for tag 0x412 processing, related to large w0 or w1 values or the frac and mult...

SUSE CVE-2025-43964

In LibRaw before 0.21.4, tag 0x412 processing in phaseonecorrect in decoders/loadmfbacks.cpp does not enforce minimum w0 and w1 values...

UBUNTU-CVE-2025-43964

In LibRaw before 0.21.4, tag 0x412 processing in phaseonecorrect in decoders/loadmfbacks.cpp does not enforce minimum w0 and w1 values...

Libraw 安全漏洞

Libraw is a C++ library from Libraw for processing RAWCRW/CR2,NEF,RAF,DNG,andothers format images, supporting various operating systems. A security vulnerability exists in Libraw versions prior to 0.21.4, which stems from the phaseonecorrect function in decoders/loadmfbacks.cpp not enforcing the...