Home
Packages
Forums
Wiki
GitLab
Security
AUR
Download

issues
advisories
todo
stats
log
login

CVE-2020-36405 - log back

CVE-2020-36405 edited at 01 Jul 2021 09:29:10

Severity

-	Unknown
+	Medium

Remote

-	Unknown
+	Remote

Type

-	Unknown
+	Arbitrary code execution

Description

+	Keystone Engine 0.9.2 has a use-after-free in llvm_ks::X86Operand::getToken.

References

+	https://github.com/google/oss-fuzz-vulns/blob/main/vulns/keystone/OSV-2020-789.yaml
+	https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=22850
+	https://github.com/keystone-engine/keystone/commit/e1547852d9accb9460573eb156fc81645b8e1871

Notes

CVE-2020-36405 created at 01 Jul 2021 09:27:36