CVE-2026-20889 | LibRaw d20315b File x3f_thumb_loader integer overflow (TALOS-2026-2358)

Inserito da Angelo Barbosa | Apr 7, 2026 | CVE

A vulnerability marked as critical has been reported in LibRaw d20315b. Affected by this vulnerability is the function x3f_thumb_loader of the component File Handler. The manipulation leads to integer overflow.

This vulnerability is documented as CVE-2026-20889. The attack can be initiated remotely. There is not any exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2026-20889 | LibRaw d20315b File x3f_thumb_loader integer overflow (TALOS-2026-2358)

Post correlati

CVE-2025-68254 | Linux Kernel up to 6.12.61/6.17.11/6.18.0 ESR IE Parser out-of-bounds

CVE-2024-32645 | Vyper up to 0.3.10 raw_log storage input validation (GHSA-xchq-w5r3-4wg3)

CVE-2024-57764 | MSFM prior 2025.01.01 fastjson system/table/add deserialization

CVE-2024-5153 | Startklar Elementor Addons Plugin up to 1.7.15 on WordPress path traversal