Unrated severityNVD Advisory· Published Sep 16, 2013· Updated Apr 29, 2026
CVE-2013-1439
CVE-2013-1439
Description
The "faster LJPEG decoder" in libraw 0.13.x, 0.14.x, and 0.15.x before 0.15.4 allows context-dependent attackers to cause a denial of service (NULL pointer dereference) via a crafted photo file.
Affected products
21cpe:2.3:a:libraw:libraw:0.13.0:*:*:*:*:*:*:*+ 20 more
- cpe:2.3:a:libraw:libraw:0.13.0:*:*:*:*:*:*:*
- cpe:2.3:a:libraw:libraw:0.13.1:*:*:*:*:*:*:*
- cpe:2.3:a:libraw:libraw:0.13.2:*:*:*:*:*:*:*
- cpe:2.3:a:libraw:libraw:0.13.3:*:*:*:*:*:*:*
- cpe:2.3:a:libraw:libraw:0.13.4:*:*:*:*:*:*:*
- cpe:2.3:a:libraw:libraw:0.13.5:*:*:*:*:*:*:*
- cpe:2.3:a:libraw:libraw:0.13.6:*:*:*:*:*:*:*
- cpe:2.3:a:libraw:libraw:0.13.7:*:*:*:*:*:*:*
- cpe:2.3:a:libraw:libraw:0.13.8:*:*:*:*:*:*:*
- cpe:2.3:a:libraw:libraw:0.14.0:*:*:*:*:*:*:*
- cpe:2.3:a:libraw:libraw:0.14.1:*:*:*:*:*:*:*
- cpe:2.3:a:libraw:libraw:0.14.2:*:*:*:*:*:*:*
- cpe:2.3:a:libraw:libraw:0.14.3:*:*:*:*:*:*:*
- cpe:2.3:a:libraw:libraw:0.14.4:*:*:*:*:*:*:*
- cpe:2.3:a:libraw:libraw:0.14.5:*:*:*:*:*:*:*
- cpe:2.3:a:libraw:libraw:0.14.6:*:*:*:*:*:*:*
- cpe:2.3:a:libraw:libraw:0.14.7:*:*:*:*:*:*:*
- cpe:2.3:a:libraw:libraw:0.15.0:*:*:*:*:*:*:*
- cpe:2.3:a:libraw:libraw:0.15.1:*:*:*:*:*:*:*
- cpe:2.3:a:libraw:libraw:0.15.2:*:*:*:*:*:*:*
- cpe:2.3:a:libraw:libraw:0.15.3:*:*:*:*:*:*:*
Patches
111909cc59e71https://github.com/LibRaw/LibRawvia nvd-ref
Vulnerability mechanics
Generated by null/stub on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
3News mentions
0No linked articles in our index yet.