CVE-2020-1397
CVE-2020-1397 is an information-disclosure flaw in Windows Imaging Component (WIC) related to how WindowsCodecs handles image decoding, particularly TIFF/CCITT paths. FireEye’s analysis identifies the root cause as uninitialized memory flowing through the image decoding pipeline (TIFFReadBufferSe...