EPSS
Percentile
73.6%
libraw.so is vulnerable to denial of service (DoS) attack. The function unpacked_load_raw in internal/dcraw_common.cpp allows an attacker to cause a type confusion error that leads to an infinite loop using a malicious input.
unpacked_load_raw
internal/dcraw_common.cpp
bugzilla.redhat.com/show_bug.cgi?id=1661612
github.com/LibRaw/LibRaw/commit/e67a9862d10ebaa97712f532eca1eb5e2e410a22