CVE-2026-24660: LibRaw: LibRaw: Memory Corruption via Malicious File Processing

Severity: Critical

CVSS Score: 9.8

A heap-based buffer overflow vulnerability exists in the x3f_load_huffman functionality of LibRaw Commit d20315b. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability.