CVE-2020-35511

Опубликовано: 23 авг. 2022

Источник: nvd

CVSS3: 7.8

EPSS Низкий

Описание

A global buffer overflow was discovered in pngcheck function in pngcheck-2.4.0(5 patches applied) via a crafted png file.

Ссылки

http://www.libpng.org/pub/png/apps/pngcheck.html
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2022/12/msg00024.html
Mailing List
Third Party Advisory
https://www.debian.org/security/2022/dsa-5300
Third Party Advisory
http://www.libpng.org/pub/png/apps/pngcheck.html
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2022/12/msg00024.html
Mailing List
Third Party Advisory
https://www.debian.org/security/2022/dsa-5300
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:libpng:pngcheck:2.4.0:*:*:*:*:*:*:*

Конфигурация 2

Одно из

cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*

EPSS

Процентиль: 24%

0.00079

Низкий

7.8 High

CVSS3

Дефекты

CWE-126

CWE-119

Связанные уязвимости

CVE-2020-35511

CVSS3: 7.8

ubuntu

больше 3 лет назад

A global buffer overflow was discovered in pngcheck function in pngcheck-2.4.0(5 patches applied) via a crafted png file.

CVE-2020-35511

CVSS3: 7.8

debian

больше 3 лет назад

A global buffer overflow was discovered in pngcheck function in pngche ...

openSUSE-SU-2022:10142-1

suse-cvrf

больше 3 лет назад

Security update for pngcheck

GHSA-4p54-36pq-7qrc

CVSS3: 7.8

github

больше 3 лет назад

A global buffer overflow was discovered in pngcheck function in pngcheck-2.4.0(5 patches applied) via a crafted png file.

EPSS

Процентиль: 24%

0.00079

Низкий

7.8 High

CVSS3

Дефекты

CWE-126

CWE-119