AVG-1230 log

Package brotli
Status Fixed
Severity Medium
Type denial of service
Affected 1.0.7-1
Fixed 1.0.9-1
Current 1.0.9-4 [core]
Ticket None
Created Tue Sep 15 13:14:45 2020
Issue Severity Remote Type Description
CVE-2020-8927 Medium Yes Denial of service
A buffer overflow exists in the Brotli library < 1.0.8, where an attacker controlling the input length of a "one-shot" decompression request to a script can...
Date Advisory Package Type
26 Sep 2020 ASA-202009-13 brotli denial of service
References
https://github.com/google/brotli/releases/tag/v1.0.9