CVE-2020-35535

Опубликовано: 01 сент. 2022

Источник: nvd

CVSS3: 5.5

EPSS Низкий

Описание

In LibRaw, there is an out-of-bounds read vulnerability within the "LibRaw::parseSonySRF()" function (libraw\src\metadata\sony.cpp) when processing srf files.

Ссылки

https://github.com/LibRaw/LibRaw/commit/c243f4539233053466c1309bde606815351bee81
Patch
Third Party Advisory
https://github.com/LibRaw/LibRaw/issues/283
Exploit
Issue Tracking
Patch
Third Party Advisory
https://github.com/LibRaw/LibRaw/commit/c243f4539233053466c1309bde606815351bee81
Patch
Third Party Advisory
https://github.com/LibRaw/LibRaw/issues/283
Exploit
Issue Tracking
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:libraw:libraw:0.20.0:-:*:*:*:*:*:*

cpe:2.3:a:libraw:libraw:0.20.0:rc2:*:*:*:*:*:*

cpe:2.3:a:libraw:libraw:0.20.1:*:*:*:*:*:*:*

cpe:2.3:a:libraw:libraw:0.20.2:*:*:*:*:*:*:*

cpe:2.3:a:libraw:libraw:0.21.0:beta1:*:*:*:*:*:*

EPSS

Процентиль: 15%

0.00047

Низкий

5.5 Medium

CVSS3

Дефекты

CWE-125

Связанные уязвимости

CVE-2020-35535

CVSS3: 5.5

ubuntu

больше 3 лет назад

In LibRaw, there is an out-of-bounds read vulnerability within the "LibRaw::parseSonySRF()" function (libraw\src\metadata\sony.cpp) when processing srf files.

CVE-2020-35535

CVSS3: 5.5

redhat

больше 5 лет назад

In LibRaw, there is an out-of-bounds read vulnerability within the "LibRaw::parseSonySRF()" function (libraw\src\metadata\sony.cpp) when processing srf files.

CVE-2020-35535

CVSS3: 5.5

debian

больше 3 лет назад

In LibRaw, there is an out-of-bounds read vulnerability within the "Li ...

GHSA-6rcc-x427-r87m

CVSS3: 5.5

github

больше 3 лет назад

In LibRaw, there is an out-of-bounds read vulnerability within the "LibRaw::parseSonySRF()" function (libraw\src\metadata\sony.cpp) when processing srf files.

EPSS

Процентиль: 15%

0.00047

Низкий

5.5 Medium

CVSS3

Дефекты

CWE-125