CVE-2020-13113
published 2020-05-21CVE-2020-13113: An issue was discovered in libexif before 0.6.22. Use of uninitialized memory in EXIF Makernote handling could lead to crashes and potential use-after-free…
high8.2CVSS 3.1
AVNACLPRNUINSUCLINAH
An issue was discovered in libexif before 0.6.22. Use of uninitialized memory in EXIF Makernote handling could lead to crashes and potential use-after-free conditions.
Affected
19 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | debian_linux | — | — |
| debian | libexif | < libexif 0.6.21-9 (bookworm) | libexif 0.6.21-9 (bookworm) |
| android | — | — | |
| libexif_project | libexif | < 0.6.22 | 0.6.22 |
| libexif_project | libexif | >= 0 < 0.6.21-9 | 0.6.21-9 |
| libexif_project | libexif | >= 0 < 0.6.21-9 | 0.6.21-9 |
| libexif_project | libexif | >= 0 < 0.6.21-9 | 0.6.21-9 |
| libexif_project | libexif | >= 0 < 0.6.21-9 | 0.6.21-9 |
| libexif_project | libexif | >= 0 < 0.6.21-2ubuntu0.5 | 0.6.21-2ubuntu0.5 |
| libexif_project | libexif | >= 0 < 0.6.21-4ubuntu0.5 | 0.6.21-4ubuntu0.5 |
| libexif_project | libexif | >= 0 < 0.6.21-6ubuntu0.3 | 0.6.21-6ubuntu0.3 |
| libexif_project | libexif | >= 0 < 0.6.21-1ubuntu1+esm5 | 0.6.21-1ubuntu1+esm5 |
| opensuse | leap | — | — |
CVSS provenance
nvdv3.18.2HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
osv8.2HIGH