EPSS
Percentile
69.7%
There is a stack-based buffer overflow in the parse_makernote function of dcraw_common.cpp in LibRaw 0.19.1. Crafted input will lead to a denial of service or possibly unspecified other impact.
bugzilla.redhat.com/show_bug.cgi?id=1661555
www.cve.org/CVERecord?id=CVE-2018-20337 https://nvd.nist.gov/vuln/detail/CVE-2018-20337