Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2020-25693HistoryDec 03, 2020 - 5:15 p.m.
CVE-2020-25693
2020-12-0317:15:00
Debian Security Bug Tracker
security-tracker.debian.org
3
0.003 Low
EPSS
Percentile
69.1%
A flaw was found in CImg in versions prior to 2.9.3. Integer overflows leading to heap buffer overflows in load_pnm() can be triggered by a specially crafted input file processed by CImg, which can lead to an impact to application availability or data integrity.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | cimg | < 2.9.4+dfsg-2 | cimg_2.9.4+dfsg-2_all.deb |
| Debian | 11 | all | cimg | < 2.9.4+dfsg-2 | cimg_2.9.4+dfsg-2_all.deb |
| Debian | 10 | all | cimg | < 2.4.5+dfsg-1+deb10u1 | cimg_2.4.5+dfsg-1+deb10u1_all.deb |
| Debian | 999 | all | cimg | < 2.9.4+dfsg-2 | cimg_2.9.4+dfsg-2_all.deb |
| Debian | 13 | all | cimg | < 2.9.4+dfsg-2 | cimg_2.9.4+dfsg-2_all.deb |
Related
osv
osv
CVE-2020-25693
2020-12-03 17:15:12
cimg - security update
2020-11-23 00:00:00
fedora
fedora
[SECURITY] Fedora 34 Update: CImg-2.9.7-1.fc34
2021-04-26 00:27:03
[SECURITY] Fedora 32 Update: CImg-2.9.7-1.fc32
2021-04-19 17:51:40
[SECURITY] Fedora 32 Update: gmic-2.9.7-1.fc32
2021-04-19 17:51:40
openvas
openvas
Mageia: Security Advisory (MGASA-2020-0443)
2022-01-28 00:00:00
Fedora: Security Advisory for gmic (FEDORA-2021-2aaba884af)
2021-04-26 00:00:00
Fedora: Security Advisory for CImg (FEDORA-2021-ca1151e997)
2021-04-23 00:00:00
cve
cve
CVE-2020-25693
2020-12-03 17:15:00
ubuntucve
ubuntucve
CVE-2020-25693
2020-12-03 00:00:00
debian
debian
[SECURITY] [DLA 2462-1] cimg security update
2020-11-22 22:40:30
redhatcve
redhatcve
CVE-2020-25693
2022-05-20 22:42:32
nessus
nessus
Debian DLA-2462-1 : cimg security update
2020-11-23 00:00:00
prion
prion
Integer overflow
2020-12-03 17:15:00
archlinux
archlinux
[ASA-202012-2] cimg: arbitrary code execution
2020-12-05 00:00:00
gitlab
gitlab
Out-of-bounds Write
2020-12-03 00:00:00
mageia
mageia
Updated cimg packages fix a security vulnerability
2020-12-03 12:54:38