CVE-2020-35534

EPSS 0.2%CWE-400

In LibRaw, there is a memory corruption vulnerability within the "crxFreeSubbandData()" function (libraw\src\decoders\crx.cpp) when processing cr3 files.

Affected products

n/a · LibRaw

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/LibRaw/LibRaw/commit/e41f331e90b383e3208cefb74e006df44bf3a4b8 https://github.com/LibRaw/LibRaw/issues/279