A heap-based buffer overflow vulnerability exists in the lossless_jpeg_load_raw functionality of LibRaw Commit 0b56545 and Commit d20315b. A specially crafted m…

A heap-based buffer overflow vulnerability exists in the lossless_jpeg_load_raw functionality of LibRaw library in commits 0b56545 and d20315b. The vulnerability can be triggered by providing a specially crafted malicious file that leads to heap buffer overflow. This affects the image processing capabilities of applications using the LibRaw library. An attacker can exploit this by providing malicious files to applications that process images using the affected LibRaw functionality.