Array index error in smal_decode_segment function in LibRaw before 0.17.1 allows context-dependent attackers to cause memory errors and possibly execute arbitrary code via vectors related to indexes.
http://www.libraw.org/news/libraw-0-17-1
http://seclists.org/fulldisclosure/2015/Nov/108
http://packetstormsecurity.com/files/134573/LibRaw-0.17-Overflow.html