CVE-2020-0093 - log back

CVE-2020-0093 edited at 20 May 2020 22:05:43
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Local
Type
- Unknown
+ Information disclosure
Description
+ In exif_data_save_data_entry of exif-data.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.
References
+ https://github.com/libexif/libexif/commit/5ae5973bed1947f4d447dc80b76d5cefadd90133
Notes
CVE-2020-0093 created at 19 May 2020 16:12:27