CVE-2020-0034 - In vp8_decode_frame of decodeframe.c, there is a possible out of bounds r - CVEs Blog

In vp8_decode_frame of decodeframe.c, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure if error correction were turned on, with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1Android ID: A-62458770

Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0034

Reference (s):

https://source.android.com/security/bulletin/2020-03-01
MLIST:[debian-lts-announce] 20211127 [SECURITY] [DLA 2829-1] libvpx security update
URL: https://lists.debian.org/debian-lts-announce/2021/11/msg00024.html
SUSE:openSUSE-SU-2020:0680
URL: http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00048.html

CVE-2020-0034 – In vp8_decode_frame of decodeframe.c, there is a possible out of bounds r

Something Fresh

CVE-2004-1715 - Directory traversal vulnerability in MIMEsweeper for Web before 5.0.4 all

CVE-2020-27216 - In Eclipse Jetty versions 1.0 thru 9.4.32.v20200930, 10.0.0.alpha1 thru 1

CVE-2020-27212 - STMicroelectronics STM32L4 devices through 2020-10-19 have incorrect acce

What People Reading

CVE-2004-1715 - Directory traversal vulnerability in MIMEsweeper for Web before 5.0.4 all

CVE-2015-0320 - Use-after-free vulnerability in Adobe Flash Player before 13.0.0.269 and

CVE-2020-26212 - GLPI stands for Gestionnaire Libre de Parc Informatique and it is a Free

CVE-2020-27212 - STMicroelectronics STM32L4 devices through 2020-10-19 have incorrect acce

CVE-2015-0353 - Adobe Flash Player before 13.0.0.281 and 14.x through 17.x before 17.0.0.

Categories

Partners

Just add here your partners image or promo text