CVE-2020-15365

Опубликовано: 28 июн. 2020

Источник: debian

EPSS Низкий

Описание

LibRaw before 0.20-Beta3 has an out-of-bounds write in parse_exif() in metadata\exif_gps.cpp via an unrecognized AtomName and a zero value of tiff_nifds.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
libraw	not-affected			package

Примечания

https://github.com/LibRaw/LibRaw/issues/301
https://github.com/LibRaw/LibRaw/commit/55f0a0c08974b8b79ebfa7762b555a1704b25fb2

EPSS

Процентиль: 51%

0.00284

Низкий

Связанные уязвимости

CVE-2020-15365

CVSS3: 6.5

ubuntu

больше 5 лет назад

LibRaw before 0.20-Beta3 has an out-of-bounds write in parse_exif() in metadata\exif_gps.cpp via an unrecognized AtomName and a zero value of tiff_nifds.

CVE-2020-15365

CVSS3: 7.5

redhat

больше 5 лет назад

LibRaw before 0.20-Beta3 has an out-of-bounds write in parse_exif() in metadata\exif_gps.cpp via an unrecognized AtomName and a zero value of tiff_nifds.

CVE-2020-15365

CVSS3: 6.5

nvd

больше 5 лет назад

LibRaw before 0.20-Beta3 has an out-of-bounds write in parse_exif() in metadata\exif_gps.cpp via an unrecognized AtomName and a zero value of tiff_nifds.

GHSA-x3r5-4qvw-fphx

CVSS3: 6.5

github

больше 3 лет назад

LibRaw before 0.20-Beta3 has an out-of-bounds write in parse_exif() in metadata\exif_gps.cpp via an unrecognized AtomName and a zero value of tiff_nifds.

EPSS

Процентиль: 51%

0.00284

Низкий