Lucene search

K
ubuntucveUbuntu.comUB:CVE-2020-1917
HistoryMar 10, 2021 - 12:00 a.m.

CVE-2020-1917

2021-03-1000:00:00
ubuntu.com
ubuntu.com
11

0.002 Low

EPSS

Percentile

64.5%

xbuf_format_converter, used as part of exif_read_data, was appending a
terminating null character to the generated string, but was not using its
standard append char function. As a result, if the buffer was full, it
would result in an out-of-bounds write. This issue affects HHVM versions
prior to 4.56.3, all versions between 4.57.0 and 4.80.1, all versions
between 4.81.0 and 4.93.1, and versions 4.94.0, 4.95.0, 4.96.0, 4.97.0,
4.98.0.

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchhhvm< anyUNKNOWN
ubuntu16.04noarchhhvm< anyUNKNOWN

0.002 Low

EPSS

Percentile

64.5%

Related for UB:CVE-2020-1917