Description
A heap-based buffer overflow vulnerability exists in the lossless_jpeg_load_raw functionality of LibRaw Commit 0b56545 and Commit d20315b. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability.
Published: 2026-04-07
Score: 9.8 Critical
EPSS: < 1% Very Low
KEV: No
Impact: Arbitrary code execution
Action: Immediate Patch
AI Analysis

Impact

A heap‑based buffer overflow exists in LibRaw’s lossless_jpeg_load_raw procedure. A specially crafted lossless JPEG file can overflow a heap buffer, allowing an attacker to execute arbitrary code in the context of the process that loads the file. The flaw is classified as CWE‑129 (Improper Validation of Array Index) and CWE‑787 (Out‑of‑Bounds Write).

Affected Systems

The vulnerability affects the LibRaw library, specifically versions 0.22.0 and 0.22.1. Any application that uses these LibRaw releases to process lossless JPEG images could be affected.

Risk and Exploitability

The CVSS score of 9.8 indicates a critical severity, while the EPSS score is below 1 % and the vulnerability is not listed in CISA’s KEV catalog. The attack vector likely involves local or remote users who can supply a malicious image file to an application that relies on LibRaw for decoding. Successful exploitation would give the attacker code execution rights within the hosting process, potentially compromising entire systems.

Generated by OpenCVE AI on April 10, 2026 at 22:45 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade LibRaw to a version in which the buffer overflow is fixed, such as the latest stable release.
  • Verify that all dependent applications link against the updated library and restart them to ensure the patch takes effect.
  • If an update cannot be applied immediately, restrict or validate input files before they are handed to LibRaw and consider disabling lossless JPEG support where possible.

Generated by OpenCVE AI on April 10, 2026 at 22:45 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 10 Apr 2026 21:00:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:libraw:libraw:0.22.0:*:*:*:*:*:*:*
cpe:2.3:a:libraw:libraw:0.22.1:*:*:*:*:*:*:*

Wed, 08 Apr 2026 20:15:00 +0000

Type Values Removed Values Added
First Time appeared Libraw
Libraw libraw
Vendors & Products Libraw
Libraw libraw

Wed, 08 Apr 2026 00:15:00 +0000

Type Values Removed Values Added
Title LibRaw: LibRaw: Arbitrary code execution via heap-based buffer overflow in lossless JPEG loading
Weaknesses CWE-787
References
Metrics threat_severity

None

 threat_severity

Important

Tue, 07 Apr 2026 18:00:00 +0000

Type Values Removed Values Added
References

Tue, 07 Apr 2026 15:15:00 +0000

Type Values Removed Values Added
Description A heap-based buffer overflow vulnerability exists in the lossless_jpeg_load_raw functionality of LibRaw Commit 0b56545 and Commit d20315b. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability.
Weaknesses CWE-129
References
Metrics cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Subscriptions

Libraw Libraw
cve-icon MITRE

Status: PUBLISHED

Assigner: talos

Published:

Updated: 2026-04-08T03:55:50.134Z

Reserved: 2026-01-21T16:26:17.029Z

Link: CVE-2026-21413

cve-icon Vulnrichment

Updated: 2026-04-07T16:23:23.212Z

cve-icon NVD

Status : Analyzed

Published: 2026-04-07T15:17:35.633

Modified: 2026-04-10T20:51:09.687

Link: CVE-2026-21413

cve-icon Redhat

Severity : Important

Publid Date: 2026-04-07T13:49:29Z

Links: CVE-2026-21413 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-04-13T14:26:48Z

Weaknesses