CVE-2026-5318 | LibRaw up to 0.22.0 JPEG DHT Parser losslessjpeg.cpp HuffTable::initval bits[] out-of-bounds write (Issue 794)

Inserito da Angelo Barbosa | Apr 1, 2026 | CVE

A vulnerability, which was classified as critical, has been found in LibRaw up to 0.22.0. This impacts the function HuffTable::initval of the file src/decompressors/losslessjpeg.cpp of the component JPEG DHT Parser. This manipulation of the argument bits[] causes out-of-bounds write.

The identification of this vulnerability is CVE-2026-5318. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

It is advisable to upgrade the affected component.

CVE-2026-5318 | LibRaw up to 0.22.0 JPEG DHT Parser losslessjpeg.cpp HuffTable::initval bits[] out-of-bounds write (Issue 794)

Post correlati

CVE-2024-7785 | Ece Software Electronic Ticket System prior 2024.08 cross site scripting

CVE-2023-51806 | UJCMS 8.0.2 File unrestricted upload

CVE-2026-22906 | WAGO 0852-1322/0852-1328 up to 2.64 Configuration File hard-coded key (VDE-2026-004)

CVE-2024-53621 | Tenda AC1206 15.03.06.23_multi_TD01 formSetCfm buffer overflow