Vulnerability CVE-2020-35530


Published: 2022-09-01

Description:
In LibRaw, there is an out-of-bounds write vulnerability within the "new_node()" function (libraw\src\x3f\x3f_utils_patched.cpp) that can be triggered via a crafted X3F file.

 References:
https://github.com/LibRaw/LibRaw/commit/11c4db253ef2c9bb44247b578f5caa57c66a1eeb
https://github.com/LibRaw/LibRaw/issues/272

Copyright 2026, cxsecurity.com

 

Back to Top