---

CVE-2020-25693 - log back

CVE-2020-25693 edited at 03 Dec 2020 20:07:18
Severity	- Unknown + Medium
Remote	- Unknown + Local
Type	- Unknown + Arbitrary code execution
Description	+ A flaw was found in CImg in versions prior to 2.9.3. Integer overflows leading to heap buffer overflows in load_pnm() can be triggered by a specially crafted input file processed by CImg, which can lead to an impact to application availability or data integrity.
References	+ https://github.com/dtschump/CImg/pull/295 + https://github.com/dtschump/CImg/commit/7db6d08355d09414d407e26aac10bb5825343e3a
Notes

CVE-2020-25693 created at 03 Dec 2020 20:05:17