CVE-2026-5318 | LibRaw up to 0.22.0 JPEG DHT Parser losslessjpeg.cpp HuffTable::initval bits[] out-of-bounds write (Issue 794)

A vulnerability, which was classified as critical, has been found in LibRaw up to 0.22.0. This impacts the function HuffTable::initval of the file src/decompressors/losslessjpeg.cpp of the component JPEG DHT Parser. This manipulation of the argument bits[] causes out-of-bounds write.

The identification of this vulnerability is CVE-2026-5318. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More