EPSS
Percentile
55.8%
libsolv.so is susceptible to buffer over-read. The attack exists when the length of last schema in data->schemadata is less than the length of input schema, leading to a buffer overflow in repodata_schema2id in repodata.c.
data->schemadata
repodata_schema2id
repodata.c
github.com/openSUSE/libsolv/commit/fdb9c9c03508990e4583046b590c30d958f272da
github.com/openSUSE/libsolv/compare/0.7.5...0.7.6
lists.debian.org/debian-lts-announce/2020/01/msg00034.html