CVE-2020-0034

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2020-0034

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-0034.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2020-0034

Downstream

ALPINE-CVE-2020-0034

DEBIAN-CVE-2020-0034

DLA-2136-1

DLA-2829-1

RHSA-2020:3876

SUSE-SU-2020:1297-1

SUSE-SU-2020:1297-2

SUSE-SU-2021:4168-1

UBUNTU-CVE-2020-0034

USN-5637-1

openSUSE-SU-2020:0680-1

openSUSE-SU-2024:11680-1

Related

Published

2020-03-10T20:15:20Z

Modified

2025-08-09T19:01:27Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator

Summary

[none]

Details

In vp8decodeframe of decodeframe.c, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure if error correction were turned on, with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1Android ID: A-62458770

References

Affected packages