Lucene search

K

GoogleOSV:CVE-2020-26682

HistoryOct 16, 2020 - 2:15 p.m.

CVE-2020-26682

2020-10-1614:15:11

Google

osv.dev

5

cve-2020-26682

libass 0.14.0

ass_outline_construct

outline_stroke

signed integer overflow

software

AI Score

6.6

Confidence

Low

EPSS

0.005

Percentile

75.8%

In libass 0.14.0, the ass_outline_construct’s call to outline_stroke causes a signed integer overflow.

References

www.openwall.com/lists/oss-security/2020/11/19/7

github.com/libass/libass/issues/431

github.com/libass/libass/pull/432

security.gentoo.org/glsa/202012-12

AI Score

6.6

Confidence

Low

EPSS

0.005

Percentile

75.8%

Related for OSV:CVE-2020-26682

openvas3 suse1 mageia1 debiancve1 cve1 nessus3 ubuntucve1 veracode1 nvd1 cvelist1 gentoo1 archlinux1 prion1 alpinelinux1