Lucene search

K

GoogleOSV:CVE-2020-20740

HistoryNov 20, 2020 - 7:15 p.m.

CVE-2020-20740

2020-11-2019:15:11

Google

osv.dev

11

pdfresurrect

0.20

heap-overflow

vulnerability

AI Score

6.7

Confidence

Low

EPSS

0.001

Percentile

50.0%

PDFResurrect before 0.20 lack of header validation checks causes heap-buffer-overflow in pdf_get_version().

References

github.com/enferex/pdfresurrect/commit/1b422459f07353adce2878806d5247d9e91fb397

github.com/enferex/pdfresurrect/issues/14

lists.debian.org/debian-lts-announce/2020/12/msg00002.html

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JMEEEPBBGER5LPABBRVZLMCC6Z24RBXW/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZOIEVFM3SIMAEOFJKKMYH2TLZ7PXLSUD/

AI Score

6.7

Confidence

Low

EPSS

0.001

Percentile

50.0%

Related for OSV:CVE-2020-20740

ubuntucve1 cnvd1 debiancve1 prion1 nessus4 cve1 cvelist1 mageia1 fedora2 openvas5 nvd1 debian1 osv2 ubuntu1