Lucene search
K

25 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/26 12:0 a.m.12 views

TencentOS Server 3: LibRaw (TSSA-2026:0352)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2026:0352 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

9.8CVSS6.4AI score0.00746EPSS
Exploits3References4
RedHat Linux
RedHat Linux
added 2026/05/11 4:0 a.m.12 views

LibRaw: LibRaw: Memory Corruption via Malicious File Processing

A flaw was found in LibRaw. A remote attacker could exploit a heap-based buffer overflow vulnerability in the x3floadhuffman functionality by providing a specially crafted malicious file. This can lead to memory corruption, potentially allowing the attacker to execute arbitrary code or cause a...

9.8CVSS6.3AI score0.00564EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2026/05/11 4:0 a.m.9 views

LibRaw: LibRaw: Memory Corruption via Malicious File Processing

A flaw was found in LibRaw. A remote attacker could exploit a heap-based buffer overflow vulnerability in the x3floadhuffman functionality by providing a specially crafted malicious file. This can lead to memory corruption, potentially allowing the attacker to execute arbitrary code or cause a...

9.8CVSS6.3AI score0.00564EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2026/05/11 3:57 a.m.11 views

LibRaw: LibRaw: Memory Corruption via Malicious File Processing

A flaw was found in LibRaw. A remote attacker could exploit a heap-based buffer overflow vulnerability in the x3floadhuffman functionality by providing a specially crafted malicious file. This can lead to memory corruption, potentially allowing the attacker to execute arbitrary code or cause a...

9.8CVSS6.6AI score0.00564EPSS
Exploits1References5
Amazon
Amazon
added 2026/04/30 12:0 a.m.10 views

Important: LibRaw

Issue Overview: An integer overflow vulnerability exists in the deflatedngloadraw functionality of LibRaw. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability. CVE-2026-20884 A heap-based buffer overflow...

9.8CVSS5.9AI score0.00564EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2026/04/30 12:0 a.m.6 views

Amazon Linux 2 : LibRaw, --advisory ALAS2-2026-3258 (ALAS-2026-3258)

The version of LibRaw installed on the remote host is prior to 0.19.4-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2026-3258 advisory. An integer overflow vulnerability exists in the deflatedngloadraw functionality of LibRaw. A specially crafted malicious...

9.8CVSS6.2AI score0.00564EPSS
Exploits2References6
Tenable Nessus
Tenable Nessus
added 2026/04/24 12:0 a.m.4 views

SUSE SLES15 Security Update : libraw (SUSE-SU-2026:1556-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1556-1 advisory. - CVE-2026-5342: out-of-bounds read via LibRaw::nikonloadpaddedpackedraw bsc1261499. - CVE-2026-20884: integer overflow and heap...

9.8CVSS6.3AI score0.00746EPSS
Exploits6References19
SUSE Linux
SUSE Linux
added 2026/04/22 4:24 p.m.4 views

Security update for libraw

This update for libraw fixes the following issues: CVE-2026-5342: out-of-bounds read via LibRaw::nikonloadpaddedpackedraw bsc1261499. CVE-2026-20884: integer overflow and heap buffer overflow via deflatedngloadraw bsc1261671. CVE-2026-20889: heap-based buffer overflow in x3fthumbloaderbsc1261672...

9.2CVSS6AI score0.00746EPSS
Exploits6References24
OSV
OSV
added 2026/04/22 4:24 p.m.2 views

SUSE-SU-2026:1556-1 Security update for libraw

This update for libraw fixes the following issues: - CVE-2026-5342: out-of-bounds read via LibRaw::nikonloadpaddedpackedraw bsc1261499. - CVE-2026-20884: integer overflow and heap buffer overflow via deflatedngloadraw bsc1261671. - CVE-2026-20889: heap-based buffer overflow in...

9.8CVSS5.8AI score0.00746EPSS
Exploits6References13
OSV
OSV
added 2026/04/20 3:30 p.m.4 views

OPENSUSE-SU-2026:20574-1 Security update for libraw

This update for libraw fixes the following issues: - CVE-2026-5342: crafted TIFF/NEF file can cause an out-of-bounds read bsc1261499. - CVE-2026-20884: integer overflow vulnerability in the deflatedngloadraw bsc1261671. - CVE-2026-20889: heap-based buffer overflow vulnerability in the...

9.8CVSS6.1AI score0.00746EPSS
Exploits7References14
Tenable Nessus
Tenable Nessus
added 2026/04/18 12:0 a.m.4 views

SUSE SLED15 / SLES15 Security Update : libraw (SUSE-SU-2026:1438-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1438-1 advisory. - CVE-2026-20911: heap-based buffer overflow in HuffTable::initvalbsc1261673. - CVE-2026-21413: heap-based...

9.8CVSS6.4AI score0.00746EPSS
Exploits3References10
SUSE Linux
SUSE Linux
added 2026/04/17 1:39 p.m.4 views

Security update for libraw

This update for libraw fixes the following issues: CVE-2026-20911: heap-based buffer overflow in HuffTable::initvalbsc1261673. CVE-2026-21413: heap-based buffer overflow in losslessjpegloadraw bsc1261674. CVE-2026-24660: heap-based buffer overflow in x3floadhuffman bsc1261676. Patch Instructions:...

7.7CVSS6.3AI score0.00746EPSS
Exploits3References12
SUSE CVE
SUSE CVE
added 2026/04/08 11:27 p.m.6 views

SUSE CVE-2026-24660

A heap-based buffer overflow vulnerability exists in the x3floadhuffman functionality of LibRaw Commit d20315b. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

7.5CVSS6.2AI score0.00564EPSS
Exploits1References8
RedhatCVE
RedhatCVE
added 2026/04/07 8:49 p.m.4 views

CVE-2026-24660

A flaw was found in LibRaw. A remote attacker could exploit a heap-based buffer overflow vulnerability in the x3floadhuffman functionality by providing a specially crafted malicious file. This can lead to memory corruption, potentially allowing the attacker to execute arbitrary code or cause a...

9.8CVSS6.5AI score0.00564EPSS
Exploits1References4
Snyk
Snyk
added 2026/04/07 6:14 p.m.5 views

Integer Overflow or Wraparound

Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound in the x3floadhuffman function. An attacker can execute arbitrary code or cause a denial of service by supplying a specially crafted file. Remediation Upgrade libraw to version 0.22.1 or higher. References...

9.8CVSS6.1AI score0.00564EPSS
Exploits1References2
EUVD
EUVD
added 2026/04/07 3:30 p.m.2 views

EUVD-2026-19628

A heap-based buffer overflow vulnerability exists in the x3floadhuffman functionality of LibRaw Commit d20315b. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

8.1CVSS6.3AI score0.00564EPSS
Exploits1References2
NVD
NVD
added 2026/04/07 3:17 p.m.5 views

CVE-2026-24660

A heap-based buffer overflow vulnerability exists in the x3floadhuffman functionality of LibRaw Commit d20315b. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS0.00564EPSS
Exploits1References9
OSV
OSV
added 2026/04/07 3:17 p.m.3 views

UBUNTU-CVE-2026-24660

A heap-based buffer overflow vulnerability exists in the x3floadhuffman functionality of LibRaw Commit d20315b. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS6.2AI score0.00564EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2026/04/07 3:17 p.m.7 views

CVE-2026-24660

A heap-based buffer overflow vulnerability exists in the x3floadhuffman functionality of LibRaw Commit d20315b. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS6.3AI score0.00564EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/04/07 1:49 p.m.23 views

CVE-2026-24660

A heap-based buffer overflow vulnerability exists in the x3floadhuffman functionality of LibRaw Commit d20315b. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

8.1CVSS0.00564EPSS
Exploits1References1
Rows per page
Query Builder