CVE-2020-15395

Опубликовано: 30 июн. 2020

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 6.8

CVSS3: 7.8

Описание

In MediaInfoLib in MediaArea MediaInfo 20.03, there is a stack-based buffer over-read in Streams_Fill_PerStream in Multiple/File_MpegPs.cpp (aka an off-by-one during MpegPs parsing).

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needed
devel	not-affected	20.09+dfsg-2
eoan	ignored	end of life
esm-apps/bionic	released	17.12-1ubuntu0.1+esm1
esm-apps/focal	released	19.09+dfsg-2ubuntu0.1~esm1
esm-apps/jammy	not-affected	20.09+dfsg-2
esm-apps/noble	not-affected	20.09+dfsg-2
esm-apps/xenial	not-affected	code not present
esm-infra-legacy/trusty	not-affected	code not present
focal	ignored	end of standard support, was needed

Показывать по

Ссылки на источники

EPSS

Процентиль: 64%

0.00466

Низкий

6.8 Medium

CVSS2

7.8 High

CVSS3

Связанные уязвимости

CVE-2020-15395

CVSS3: 7.8

nvd

больше 5 лет назад

In MediaInfoLib in MediaArea MediaInfo 20.03, there is a stack-based buffer over-read in Streams_Fill_PerStream in Multiple/File_MpegPs.cpp (aka an off-by-one during MpegPs parsing).

CVE-2020-15395

CVSS3: 7.8

debian

больше 5 лет назад

In MediaInfoLib in MediaArea MediaInfo 20.03, there is a stack-based b ...

GHSA-2g45-mrfv-r6f4

CVSS3: 7.8

github

больше 3 лет назад

In MediaInfoLib in MediaArea MediaInfo 20.03, there is a stack-based buffer over-read in Streams_Fill_PerStream in Multiple/File_MpegPs.cpp (aka an off-by-one during MpegPs parsing).

EPSS

Процентиль: 64%

0.00466

Низкий

6.8 Medium

CVSS2

7.8 High

CVSS3

CVE-2020-15395

Описание

Пакет libmediainfo

Ссылки на источники

Связанные уязвимости