← back
CVE-2020-35530

CVE-2020-35530

EPSS 0.4%CWE-787
In LibRaw, there is an out-of-bounds write vulnerability within the "new_node()" function (libraw\src\x3f\x3f_utils_patched.cpp) that can be triggered via a crafted X3F file.
Affected products
n/a · LibRaw

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/LibRaw/LibRaw/commit/11c4db253ef2c9bb44247b578f5caa57c66a1eebhttps://github.com/LibRaw/LibRaw/issues/272https://lists.debian.org/debian-lts-announce/2022/09/msg00024.html