Уязвимость CVE-2020-0198

Пакет	Статус	Версия исправления	Релиз	Тип
libexif	fixed	0.6.22-2		package
libexif	fixed	0.6.21-5.1+deb10u4	buster	package
libexif	fixed	0.6.21-2+deb9u4	stretch	package

CVE-2020-0198

CVSS3: 7.5

ubuntu

больше 5 лет назад

In exif_data_load_data_content of exif-data.c, there is a possible UBSAN abort due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-146428941

CVE-2020-0198

CVSS3: 7.5

redhat

больше 5 лет назад

In exif_data_load_data_content of exif-data.c, there is a possible UBSAN abort due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-146428941

CVE-2020-0198

CVSS3: 7.5

nvd

больше 5 лет назад

In exif_data_load_data_content of exif-data.c, there is a possible UBSAN abort due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-146428941

GHSA-3pcq-2643-8rg5

CVSS3: 7.5

github

больше 3 лет назад

In exif_data_load_data_content of exif-data.c, there is a possible UBSAN abort due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-146428941

BDU:2021-02074

CVSS3: 7.5

fstec

больше 5 лет назад

Уязвимость фунции exif_data_load_data_content (exif-data.c) операционной системы Android, позволяющая нарушителю вызвать отказ в обслуживании

exploitDog

CVE-2020-0198

Описание

Пакеты

Примечания

Связанные уязвимости