VYPR
High severity8.1NVD Advisory· Published Apr 7, 2026· Updated Apr 10, 2026

CVE-2026-24660

CVE-2026-24660

Description

A heap-based buffer overflow vulnerability exists in the x3f_load_huffman functionality of LibRaw Commit d20315b. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

19

Patches

Vulnerability mechanics

References

2

News mentions

1