Primary

Context

LibRaw Out-of-Bounds Read Vulnerability in Fujifilm TIFF Tag Parser

Vulnerability

Patched

A vulnerability allowing an out-of-bounds read has been identified in LibRaw versions prior to 0.21.4. The issue arises in the TIFF metadata parser, specifically within the Fujifilm 0xf00c tag parser.

Impact

Exploitation of this vulnerability leads to an out-of-bounds read, which can potentially be exploited to cause a denial-of-service condition or to read sensitive information from memory.

Remediation

Users can upgrade to LibRaw version 0.21.4 or later to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

4.2

impact

0.6

exploitability

5.1

remediation

7.7

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.2

impact

0.6

exploitability

5.1

remediation

7.7

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

LibRaw Out-of-Bounds Read Vulnerability in Fujifilm TIFF Tag Parser

Vulnerability

Impact

Remediation

Affected Products

LibRaw

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating