CVE-2020-3898

Опубликовано: 22 окт. 2020

Источник: debian

EPSS Низкий

Описание

A memory corruption issue was addressed with improved validation. This issue is fixed in macOS Catalina 10.15.4. An application may be able to gain elevated privileges.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
cups	fixed	2.3.1-12		package
cups	fixed	2.2.10-6+deb10u3	buster	package
cups	fixed	2.2.1-8+deb9u6	stretch	package

Примечания

https://bugzilla.redhat.com/show_bug.cgi?id=1823964
https://src.fedoraproject.org/rpms/cups/blob/c1920d09b842bd2d0611559d00d595abd8aa2424/f/cups-ppdopen-heap-overflow.patch
https://github.com/apple/cups/commit/82e3ee0e3230287b76a76fb8f16b92ca6e50b444 (cups/ppd.c, ppdc/ppdc-source.cxx)

EPSS

Процентиль: 26%

0.00087

Низкий

Связанные уязвимости

CVE-2020-3898

CVSS3: 7.8

ubuntu

около 5 лет назад

A memory corruption issue was addressed with improved validation. This issue is fixed in macOS Catalina 10.15.4. An application may be able to gain elevated privileges.

CVE-2020-3898

CVSS3: 4.5

redhat

больше 5 лет назад

A memory corruption issue was addressed with improved validation. This issue is fixed in macOS Catalina 10.15.4. An application may be able to gain elevated privileges.

CVE-2020-3898

CVSS3: 7.8

nvd

около 5 лет назад

A memory corruption issue was addressed with improved validation. This issue is fixed in macOS Catalina 10.15.4. An application may be able to gain elevated privileges.

openSUSE-SU-2020:0555-1

suse-cvrf

больше 5 лет назад

Security update for cups

SUSE-SU-2020:14341-1

suse-cvrf

больше 5 лет назад

Security update for cups

EPSS

Процентиль: 26%

0.00087

Низкий