Security Advisory

CVE-2026-20889

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-04-07 13:49:27

Last updated 2026-04-08 03:55:49

Assigner talos

State PUBLISHED

Description

A heap-based buffer overflow vulnerability exists in the x3f_thumb_loader functionality of LibRaw Commit d20315b. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability.

← Browse all CVEs View on cve.org ↗