exploitDog

GHSA-4jw7-vxxv-4m7h

Опубликовано: 01 мар. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

ARM astcenc 3.2.0 is vulnerable to Buffer Overflow. When the compression function of the astc-encoder project with -cl option was used, a stack-buffer-overflow occurred in function encode_ise() in function compress_symbolic_block_for_partition_2planes() in "/Source/astcenc_compress_symbolic.cpp".

ARM astcenc 3.2.0 is vulnerable to Buffer Overflow. When the compression function of the astc-encoder project with -cl option was used, a stack-buffer-overflow occurred in function encode_ise() in function compress_symbolic_block_for_partition_2planes() in "/Source/astcenc_compress_symbolic.cpp".

Ссылки

EPSS

Процентиль: 59%

0.00385

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-787

Связанные уязвимости

CVE-2021-43086

CVSS3: 9.8

ubuntu

почти 4 года назад

ARM astcenc 3.2.0 is vulnerable to Buffer Overflow. When the compression function of the astc-encoder project with -cl option was used, a stack-buffer-overflow occurred in function encode_ise() in function compress_symbolic_block_for_partition_2planes() in "/Source/astcenc_compress_symbolic.cpp".

CVE-2021-43086

CVSS3: 9.8

nvd

почти 4 года назад

ARM astcenc 3.2.0 is vulnerable to Buffer Overflow. When the compression function of the astc-encoder project with -cl option was used, a stack-buffer-overflow occurred in function encode_ise() in function compress_symbolic_block_for_partition_2planes() in "/Source/astcenc_compress_symbolic.cpp".

EPSS

Процентиль: 59%

0.00385

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-787