CVE-2020-15365

CVE-2020-15365

EPSS 1.3%

LibRaw before 0.20-Beta3 has an out-of-bounds write in parse_exif() in metadata\exif_gps.cpp via an unrecognized AtomName and a zero value of tiff_nifds.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/LibRaw/LibRaw/compare/0.20-Beta2...0.20-Beta3 https://github.com/LibRaw/LibRaw/issues/301