Lucene search
Alpine Linux Development TeamALPINE:CVE-2020-22628HistoryAug 22, 2023 - 7:16 p.m.
CVE-2020-22628
2023-08-2219:16:19
Alpine Linux Development Team
security.alpinelinux.org
9
cve-2020-22628
libraw
buffer overflow
stretch function
aspect_ratio.cpp
unix
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
24.0%
Buffer Overflow vulnerability in LibRaw::stretch() function in libraw\src\postprocessing\aspect_ratio.cpp.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | 3.18-community | noarch | libraw | = 0.21.1-r1 | UNKNOWN |
| Alpine | 3.19-community | noarch | libraw | = 0.21.1-r2 | UNKNOWN |
| Alpine | 3.20-community | noarch | libraw | = 0.21.2-r0 | UNKNOWN |
| Alpine | edge-community | noarch | libraw | = 0.21.3-r0 | UNKNOWN |
Related
osv
osv
libraw - security update
2023-09-10 00:00:00
libraw vulnerability
2023-09-18 13:15:50
CVE-2020-22628
2023-08-22 19:16:19
ubuntu
ubuntu
LibRaw vulnerability
2023-09-18 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-3560-1)
2023-09-11 00:00:00
Ubuntu: Security Advisory (USN-6377-1)
2023-09-19 00:00:00
openSUSE: Security Advisory for libraw (SUSE-SU-2023:3966-1)
2024-03-04 00:00:00
nvd
nvd
CVE-2020-22628
2023-08-22 19:16:19
redhatcve
redhatcve
CVE-2020-22628
2023-08-28 15:48:35
nessus
nessus
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : libraw (SUSE-SU-2023:3968-1)
2023-10-05 00:00:00
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : libraw (SUSE-SU-2023:3966-1)
2023-10-05 00:00:00
Debian DLA-3560-1 : libraw - LTS security update
2023-09-10 00:00:00
debiancve
debiancve
CVE-2020-22628
2023-08-22 19:16:19
prion
prion
Buffer overflow
2023-08-22 19:16:00
debian
debian
[SECURITY] [DLA 3560-1] libraw security update
2023-09-10 14:19:45
ubuntucve
ubuntucve
CVE-2020-22628
2023-08-22 00:00:00
cvelist
cvelist
CVE-2020-22628
2023-08-22 00:00:00
cve
cve
CVE-2020-22628
2023-08-22 19:16:19
amazon
amazon
Medium: LibRaw
2023-09-13 23:44:00
rosalinux
rosalinux
Advisory ROSA-SA-2024-2474
2024-09-03 12:11:57
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
24.0%
Related for ALPINE:CVE-2020-22628