CVE-2015-8367: LibRaw: Memory objects are not intialized properly

Severity: Critical

CVSS Score: 9.8

The phase_one_correct function in Libraw before 0.17.1 allows attackers to cause memory errors and possibly execute arbitrary code, related to memory object initialization.