Astra Linux – Vulnerability in libass

In libass 0.14.0, the call to assoutlineconstruct's outlinestroke function causes a signed integer overflow...

Linux Distros Unpatched Vulnerability : CVE-2020-26682

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In libass 0.14.0, the assoutlineconstruct's call to outlinestroke causes a signed integer overflow. CVE-2020-26682 Note that Nessus relies on the presence of th...

The vulnerability of the ass_outline_construct() function in the ASS/SSA Libass subtitle renderer allows a hacker to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the assoutlineconstruct function in the ASS/SSA Libass subtitle renderer is related to integer overflow. Exploiting this vulnerability could allow an attacker to gain access to confidential data, compromise its integrity, and cause service failures...

Arbitrary Code Execution

libass.so is vulnerable to arbitrary code execution. An integer overflow occurs during a call to outlinestroke that is made by assoutlineconstruct, potentially allowing an attacker to execute arbitrary code on the host OS...

CVE-2020-26682

In libass 0.14.0, the assoutlineconstruct's call to outlinestroke causes a signed integer overflow...

Integer overflow

In libass 0.14.0, the assoutlineconstruct's call to outlinestroke causes a signed integer overflow...