Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2020-35511HistoryAug 23, 2022 - 8:15 p.m.
CVE-2020-35511
2022-08-2320:15:08
Debian Security Bug Tracker
security-tracker.debian.org
7
buffer overflow
pngcheck-2.4.0
crafted png file
unix
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
32.2%
A global buffer overflow was discovered in pngcheck function in pngcheck-2.4.0(5 patches applied) via a crafted png file.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | pngcheck | < 3.0.2-2 | pngcheck_3.0.2-2_all.deb |
| Debian | 11 | all | pngcheck | < 3.0.3-1~deb11u1 | pngcheck_3.0.3-1~deb11u1_all.deb |
| Debian | 999 | all | pngcheck | < 3.0.2-2 | pngcheck_3.0.2-2_all.deb |
| Debian | 13 | all | pngcheck | < 3.0.2-2 | pngcheck_3.0.2-2_all.deb |
Related
nvd
nvd
CVE-2020-35511
2022-08-23 20:15:08
osv
osv
pngcheck - security update
2022-12-12 00:00:00
pngcheck - security update
2022-12-13 00:00:00
pngcheck vulnerabilities
2023-06-21 08:57:35
nessus
nessus
Debian DLA-3238-1 : pngcheck - LTS security update
2022-12-13 00:00:00
openSUSE 15 Security Update : pngcheck (openSUSE-SU-2022:10142-1)
2022-10-10 00:00:00
Debian DSA-5300-1 : pngcheck - security update
2022-12-12 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-5300-1)
2022-12-13 00:00:00
Debian: Security Advisory (DLA-3238-1)
2022-12-14 00:00:00
Ubuntu: Security Advisory (USN-6182-1)
2023-06-22 00:00:00
veracode
veracode
Denial Of Service (DoS)
2022-12-15 19:44:48
debian
debian
[SECURITY] [DLA 3238-1] pngcheck security update
2022-12-13 15:10:28
[SECURITY] [DSA 5300-1] pngcheck security update
2022-12-12 21:54:40
prion
prion
Buffer overflow
2022-08-23 20:15:00
suse
suse
Security update for pngcheck (moderate)
2022-10-06 00:00:00
cve
cve
CVE-2020-35511
2022-08-23 20:15:08
ubuntucve
ubuntucve
CVE-2020-35511
2022-08-23 00:00:00
cvelist
cvelist
CVE-2020-35511
2022-08-23 00:00:00
ubuntu
ubuntu
pngcheck vulnerabilities
2023-06-21 00:00:00
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
32.2%
Related for DEBIANCVE:CVE-2020-35511