libraw is vulnerable to arbitrary code execution. The vulnerability exists as an array index error in smal_decode_segment function in LibRaw before 0.17.1 allows context-dependent attackers to cause memory errors and possibly execute arbitrary code via vectors related to indexes.