Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2020-27818

Опубликовано: 08 дек. 2020
Источник: debian
EPSS Низкий

Описание

A flaw was found in the check_chunk_name() function of pngcheck-2.4.0. An attacker able to pass a malicious file to be processed by pngcheck could cause a temporary denial of service, posing a low risk to application availability.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
pngcheckfixed2.3.0-13package
pngcheckfixed2.3.0-7+deb10u1busterpackage

Примечания

  • https://bugzilla.redhat.com/show_bug.cgi?id=1902011

  • Patch applied in Fedora: https://src.fedoraproject.org/rpms/pngcheck/blob/cc48791e34201caf7b686084b735d06cef66c974/f/pngcheck-2.4.0-overflow-bz1897485.patch

EPSS

Процентиль: 38%
0.00163
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2020-27818

CVSS3: 3.3
ubuntu
около 5 лет назад

A flaw was found in the check_chunk_name() function of pngcheck-2.4.0. An attacker able to pass a malicious file to be processed by pngcheck could cause a temporary denial of service, posing a low risk to application availability.

nvd логотип

CVE-2020-27818

CVSS3: 3.3
nvd
около 5 лет назад

A flaw was found in the check_chunk_name() function of pngcheck-2.4.0. An attacker able to pass a malicious file to be processed by pngcheck could cause a temporary denial of service, posing a low risk to application availability.

suse-cvrf логотип

openSUSE-SU-2020:2198-1

suse-cvrf
около 5 лет назад

Security update for pngcheck

suse-cvrf логотип

openSUSE-SU-2020:2177-1

suse-cvrf
около 5 лет назад

Security update for pngcheck

github логотип

GHSA-xjm9-9gr6-gcpx

CVSS3: 3.3
github
больше 3 лет назад

A flaw was found in the check_chunk_name() function of pngcheck-2.4.0. An attacker able to pass a malicious file to be processed by pngcheck could cause a temporary denial of service, posing a low risk to application availability.

EPSS

Процентиль: 38%
0.00163
Низкий