vulnerability
Amazon Linux AMI 2: CVE-2020-35531: Security patch for LibRaw (ALAS-2023-2256)
Severity | CVSS | Published | Added | Modified |
---|---|---|---|---|
5 | (AV:L/AC:M/Au:N/C:N/I:N/A:C) | Sep 1, 2022 | Sep 21, 2023 | Jan 28, 2025 |
Severity
5
CVSS
(AV:L/AC:M/Au:N/C:N/I:N/A:C)
Published
Sep 1, 2022
Added
Sep 21, 2023
Modified
Jan 28, 2025
Description
In LibRaw, an out-of-bounds read vulnerability exists within the get_huffman_diff() function (libraw\src\x3f\x3f_utils_patched.cpp) when reading data from an image file.
Solution(s)
amazon-linux-ami-2-upgrade-librawamazon-linux-ami-2-upgrade-libraw-debuginfoamazon-linux-ami-2-upgrade-libraw-develamazon-linux-ami-2-upgrade-libraw-static

NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.