CVE-2020-0181 — Integer Overflow or Wraparound in Google Android

CWE-190 — Integer Overflow or Wraparound CWE-787 — Out-of-bounds Write8 documents7 sources

Severity

7.5HIGHNVD

EPSS

9.5%

top 7.18%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Libexif Project Libexif Google Android Fedoraproject Fedora

Timeline

PublishedJun 11

Latest updateMay 24

Description

In exif_data_load_data_thumbnail of exif-data.c, there is a possible denial of service due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-145075076

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages4 packages

▶NVDlibexif_project/libexif< 0.6.22_p20201105

▶Debianlibexif_project/libexif< 0.6.21-6+3

▶CVEListV5google/androidAndroid-10

▶NVDgoogle/android10.0

Also affects: Fedora 32, 33

Patches

Patch: source.android.com ↗Patch: source.android.com ↗

🔴Vulnerability Details

GHSA

GHSA-7mwx-67xm-r6m4: In exif_data_load_data_thumbnail of exif-data↗2022-05-24

▶

CVEList

CVE-2020-0181: In exif_data_load_data_thumbnail of exif-data↗2020-06-11

▶

OSV

CVE-2020-0181: In exif_data_load_data_thumbnail of exif-data↗2020-06-11

▶

📋Vendor Advisories

Red Hat

libexif: integer overflow in exif_data_load_data_thumbnail function in exif-data.c↗2020-06-01

▶

Debian

CVE-2020-0181: libexif - In exif_data_load_data_thumbnail of exif-data.c, there is a possible denial of s...↗2020

▶

💬Community

Bugzilla

CVE-2020-0181 libexif: integer overflow in exif_data_load_data_thumbnail function in exif-data.c↗2020-06-15

▶

Bugzilla

CVE-2020-0181 libexif: integer overflow in exif_data_load_data_thumbnail function in exif-data.c [fedora-all]↗2020-06-15

▶