CVE-2020-0093
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2020-0093
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-0093.json
- Related
- Published
- 2020-05-14T21:15:11Z
- Modified
- 2023-11-29T06:53:34.572429Z
- Details
-
In exifdatasavedataentry of exif-data.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-148705132
- References
Affected packages
Alpine:v3.10 / libexif
Package
- Name
- libexif
Alpine:v3.11 / libexif
Package
- Name
- libexif
Alpine:v3.12 / libexif
Package
- Name
- libexif
Alpine:v3.8 / libexif
Package
- Name
- libexif
Alpine:v3.9 / libexif
Package
- Name
- libexif
Git / github.com/libexif/exif
Affected ranges
- Type
- GIT
- Repo
- https://github.com/libexif/exif
- Events
- Type
- GIT
- Repo
- https://github.com/libexif/libexif
- Events
Affected versions
Other
cvs-migration
exif-0_6-release
exif-0_6_15-release
exif-0_6_17-release
exif-0_6_18-release
exif-0_6_19-release
exif-0_6_20-release
exif-0_6_21-release
exif-0_6_9-release
libexif-0_5_7-rc2
libexif-0_5_7-rc3
libexif-0_5_7-rc4
libexif-0_5_7-release
libexif-0_5_9-release
libexif-0_6_12-release
libexif-0_6_14-release
libexif-0_6_15-release
libexif-0_6_16-release
libexif-0_6_17-release
libexif-0_6_18-release
libexif-0_6_19-release
libexif-0_6_20-release
libexif-0_6_21-release
libexif-before-0_6_0-api-change