In LibRaw, there is an out-of-bounds write vulnerability within the «new_node()» function (librawsrcx3fx3f_utils_patched.cpp) that can be triggered via a crafted X3F file.
