CVE-2020-36149 log

Source
Severity Low
Remote No
Type Denial of service
Description
Incorrect handling of input data in changeAttribute function in the libmysofa library 0.5 - 1.1 will lead to NULL pointer dereference and segmentation fault error in case of restrictive memory protection or near NULL pointer overwrite in case of no memory restrictions (e.g. in embedded environments).
Group Package Affected Fixed Severity Status Ticket
AVG-1547 libmysofa 1.1-2 1.2-1 Medium Fixed
References
https://github.com/hoene/libmysofa/issues/137
https://github.com/hoene/libmysofa/pull/146