CVE-2020-35965
- Source
- https://cve.org/CVERecord?id=CVE-2020-35965
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-35965.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2020-35965
- Downstream
- Related
- Published
- 2021-01-04T02:15:11.273Z
- Modified
- 2026-02-13T08:42:30.140668Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
decode_frame in libavcodec/exr.c in FFmpeg 4.3.1 has an out-of-bounds write because of errors in calculations of when to perform memset zero operations.
- References
-
- https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=26532
- https://github.com/FFmpeg/FFmpeg/commit/3e5959b3457f7f1856d997261e6ac672bba49e8b
- https://github.com/FFmpeg/FFmpeg/commit/b0a8b40294ea212c1938348ff112ef1b9bf16bb3
- https://lists.debian.org/debian-lts-announce/2021/01/msg00026.html
- https://security.gentoo.org/glsa/202105-24
- https://www.debian.org/security/2021/dsa-4990
- https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=26532
- https://github.com/FFmpeg/FFmpeg/commit/3e5959b3457f7f1856d997261e6ac672bba49e8b
- https://github.com/FFmpeg/FFmpeg/commit/b0a8b40294ea212c1938348ff112ef1b9bf16bb3
- https://lists.debian.org/debian-lts-announce/2021/01/msg00026.html
- https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=26532
Affected packages
Git / github.com/ffmpeg/ffmpeg
Affected ranges
- Type
- GIT
- Repo
- https://github.com/ffmpeg/ffmpeg
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixedIntroduced0 Unknown introduced commit / All previous commits are affectedFixedIntroducedFixed
Database specific
source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-35965.json"
vanir_signatures
[
{
"signature_type": "Function",
"signature_version": "v1",
"source": "https://github.com/ffmpeg/ffmpeg/commit/b0a8b40294ea212c1938348ff112ef1b9bf16bb3",
"digest": {
"function_hash": "335900245080905195518199500105634341627",
"length": 3875.0
},
"id": "CVE-2020-35965-46b6d8a5",
"deprecated": false,
"target": {
"file": "libavcodec/exr.c",
"function": "decode_frame"
}
},
{
"signature_type": "Line",
"signature_version": "v1",
"source": "https://github.com/ffmpeg/ffmpeg/commit/b0a8b40294ea212c1938348ff112ef1b9bf16bb3",
"digest": {
"line_hashes": [
"314669553627519175455910785186614959061",
"1607368138201453610048915646059563107",
"244482794177306786665733148081237557086",
"214458255490862211237265395190480335490",
"263897946523995697652292010420148165934",
"19272380277864278366063073187641011363",
"219757913322254528710254513951421514529",
"170780553531284558693191737341113297",
"37814278519587150644049758241271325829",
"46704310771709105788335437876713644209"
],
"threshold": 0.9
},
"id": "CVE-2020-35965-9adf2974",
"deprecated": false,
"target": {
"file": "libavcodec/exr.c"
}
},
{
"signature_type": "Function",
"signature_version": "v1",
"source": "https://github.com/ffmpeg/ffmpeg/commit/3e5959b3457f7f1856d997261e6ac672bba49e8b",
"digest": {
"function_hash": "124937820520588315441984477221866751122",
"length": 3851.0
},
"id": "CVE-2020-35965-e8160555",
"deprecated": false,
"target": {
"file": "libavcodec/exr.c",
"function": "decode_frame"
}
},
{
"signature_type": "Line",
"signature_version": "v1",
"source": "https://github.com/ffmpeg/ffmpeg/commit/3e5959b3457f7f1856d997261e6ac672bba49e8b",
"digest": {
"line_hashes": [
"11453760296080827596215104085033325511",
"338685430887148091291965859791680091872",
"172064141470120326502547602228483699307",
"68840693532925938066564762591449107621"
],
"threshold": 0.9
},
"id": "CVE-2020-35965-fdcf59d3",
"deprecated": false,
"target": {
"file": "libavcodec/exr.c"
}
}
]
Git / github.com/htmlunit/htmlunit
Affected ranges
- Type
- GIT
- Repo
- https://github.com/htmlunit/htmlunit
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
2.*
2.32
2.33
2.34.0
2.34.1
2.35.0
2.36.0
2.37.0
2.38.0
2.39.0
2.40.0
2.41.0
2.42.0
2.43.0
2.44.0
2.45.0
2.46.0
2.47.0
2.47.1
2.48.0
2.49.0
2.49.1
2.50.0
2.51.0
2.52.0
2.53.0
2.54.0
2.55.0
2.56.0
2.57.0
2.58.0
2.59.0
2.60.0
2.61.0
2.62.0
2.63.0
2.64.0
2.65.0
2.65.1
2.66.0
2.67.0
2.68.0
2.69.0
2.70.0
3.*
3.0.0
3.1.0
3.10.0
3.11.0
3.2.0
3.3.0
3.4.0
3.5.0
3.6.0
3.7.0
3.8.0
3.9.0
4.*
4.0.0
4.1.0
4.2.0
4.3.0