PT-2020-15849 · Libraw+1 · Libraw+1
Lxumeio
·
Published
2020-09-16
·
Updated
2022-12-06
·
CVE-2020-24889
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
LibRaw versions prior to 20.0
Description
A buffer overflow issue in the
GetNormalizedModel function within src/metadata/normalize model.cpp may lead to arbitrary code execution, depending on the context.Recommendations
For versions prior to 20.0, update to version 20.0 or later to resolve the issue.
Exploit
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Libraw