CVE-2026-5318PATCHED

LibRaw JPEG DHT losslessjpeg.cpp initval out-of-bounds write

Description

A weakness has been identified in LibRaw up to 0.22.0. This impacts the function HuffTable::initval of the file src/decompressors/losslessjpeg.cpp of the component JPEG DHT Parser. This manipulation of the argument bits[] causes out-of-bounds write. It is possible to initiate the attack remotely. The exploit has been made available to the public and could be used for attacks. Upgrading to version 0.22.1 will fix this issue. Patch name: a6734e867b19d75367c05f872ac26322464e3995. It is advisable to upgrade the affected component.

Affected Products

Vendor	Product	Versions
—	libraw	0.1, 0.2, 0.3, 0.4, 0.5, 0.6, 0.7, 0.8, 0.9, 0.10, 0.11, 0.12, 0.13, 0.14, 0.15, 0.16, 0.17, 0.18, 0.19, 0.20, 0.21, 0.22.0

References

https://vuldb.com/vuln/354650(vdb-entry, technical-description)
https://vuldb.com/vuln/354650/cti(signature, permissions-required)
https://vuldb.com/submit/780538(third-party-advisory)
https://github.com/LibRaw/LibRaw/issues/794(issue-tracking)
https://github.com/LibRaw/LibRaw/issues/794#issuecomment-4065342499(issue-tracking)
https://github.com/biniamf/pocs/tree/main/libraw_lljpeg(exploit)
https://github.com/LibRaw/LibRaw/commit/a6734e867b19d75367c05f872ac26322464e3995(patch)
https://github.com/LibRaw/LibRaw/(product)

CVSS 3.14.3 MEDIUM

VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

CISA KEV❌ No

Actively exploited❌ No

Patch available

0.22.1

CWECWE-787, CWE-119

PublishedApr 2, 2026

Last enriched1h ago

Trending Score0

Source articles0

Independent0

Info Completeness0/14

Missing: cve_id, title, description, vendor, product, versions, cvss, epss, cwe, kev, exploit, patch, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Pin to Dashboard

Verification

State: unverified

Confidence: 0%

Vulnerability Timeline

CVE Published

Apr 2, 2026

Patch Available

Apr 2, 2026

Discovered by ZDM

Apr 2, 2026