CNNVD-202601-4438 Information

CNNVD ID

CNNVD-202601-4438

Related CVE

CVE-2026-24808

• CNNVD Published: 2026-01-27

Description (Chinese)

RawTherapee是RawTherapee开源的一个照片处理程序。 RawTherapee 5.11及之前版本存在安全漏洞，该漏洞源于图像处理引擎组件dcraw.Cc存在整数溢出或环绕错误，可能导致内存损坏。

Description (English)

RawTherapee is a photo processing program for RawTherapee’s open source. RawTherapee 5.11 and previous versions had a security loophole, which stemmed from an integer spill or a loop error in the image processing engine component dcraw.Cc, which could cause memory damage.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

RawTherapee

Published

2026-01-27

Last Modified

2026-02-24

References

https://github.com/RawTherapee/RawTherapee/pull/7359 https://access.redhat.com/security/cve/cve-2026-24808

Patch

https://github.com/RawTherapee/RawTherapee/releases