EPSS
Percentile
75.1%
libraw.so is vulnerable to denial of service (DoS) attacks. A malicious user can pass a RAW file to the samsung_load_raw function in dcraw.c to cause a out-of-bounds read that can crash the application.
samsung_load_raw
dcraw.c
bugzilla.redhat.com/show_bug.cgi?id=1610469
github.com/LibRaw/LibRaw/commit/fd6330292501983ac75fe4162275794b18445bd9