CVE-2020-0198

By Year
2020
CVE-2020-0198

Track security vulnerabilities

In exif_data_load_data_content of exif-data.c, there is a possible UBSAN abort due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-146428941

Published at

2020-06-11

584 days ago

Modified

2020-11-24

418 days ago

2020

Year

The year of the turtle

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ELDZR6USD5PR34MRK2ZISLCYJ465FNKN/

FEDORA:FEDORA-2020-0aa0fc1b0c

Read More about it More info

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SVBD5JRUQPN4LQHTAAJHA3MR5M7YTAC7/

FEDORA:FEDORA-2020-e99ef3282f

Read More about it More info

https://security.gentoo.org/glsa/202011-19

GENTOO:GLSA-202011-19

Read More about it More info

https://source.android.com/security/bulletin/pixel/2020-06-01

MISC:https://source.android.com/security/bulletin/pixel/2020-06-01

Read More about it More info

https://lists.debian.org/debian-lts-announce/2020/06/msg00020.html

MLIST:[debian-lts-announce] 20200613 [SECURITY] [DLA 2249-1] libexif security update

Read More about it More info

https://usn.ubuntu.com/4396-1/

UBUNTU:USN-4396-1

Read More about it More info

Vulnerability RAW

{
	"Title": {
		"_text": "CVE-2020-0198"
	},
	"Notes": {
		"Note": [
			{
				"_text": "In exif_data_load_data_content of exif-data.c, there is a possible UBSAN abort due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-146428941"
			},
			{
				"_text": "2020-06-11"
			},
			{
				"_text": "2020-11-24"
			}
		]
	},
	"CVE": {
		"_text": "CVE-2020-0198"
	},
	"References": {
		"Reference": [
			{
				"URL": {
					"_text": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ELDZR6USD5PR34MRK2ZISLCYJ465FNKN/"
				},
				"Description": {
					"_text": "FEDORA:FEDORA-2020-0aa0fc1b0c"
				}
			},
			{
				"URL": {
					"_text": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SVBD5JRUQPN4LQHTAAJHA3MR5M7YTAC7/"
				},
				"Description": {
					"_text": "FEDORA:FEDORA-2020-e99ef3282f"
				}
			},
			{
				"URL": {
					"_text": "https://security.gentoo.org/glsa/202011-19"
				},
				"Description": {
					"_text": "GENTOO:GLSA-202011-19"
				}
			},
			{
				"URL": {
					"_text": "https://source.android.com/security/bulletin/pixel/2020-06-01"
				},
				"Description": {
					"_text": "MISC:https://source.android.com/security/bulletin/pixel/2020-06-01"
				}
			},
			{
				"URL": {
					"_text": "https://lists.debian.org/debian-lts-announce/2020/06/msg00020.html"
				},
				"Description": {
					"_text": "MLIST:[debian-lts-announce] 20200613 [SECURITY] [DLA 2249-1] libexif security update"
				}
			},
			{
				"URL": {
					"_text": "https://usn.ubuntu.com/4396-1/"
				},
				"Description": {
					"_text": "UBUNTU:USN-4396-1"
				}
			}
		]
	}
}