vulnerability
Alma Linux: CVE-2020-15503: Moderate: GNOME security, bug fix, and enhancement update (ALSA-2020-4451)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:L/Au:N/C:N/I:N/A:P) | Jul 2, 2020 | May 4, 2022 | Nov 14, 2024 |
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:P)
Published
Jul 2, 2020
Added
May 4, 2022
Modified
Nov 14, 2024
Description
LibRaw before 0.20-RC1 lacks a thumbnail size range check. This affects decoders/unpack_thumb.cpp, postprocessing/mem_image.cpp, and utils/thumb_utils.cpp. For example, malloc(sizeof(libraw_processed_image_t)+T.tlength) occurs without validating T.tlength.
Solution(s)
alma-upgrade-dleyna-rendereralma-upgrade-frei0r-develalma-upgrade-frei0r-pluginsalma-upgrade-frei0r-plugins-opencvalma-upgrade-gnome-remote-desktopalma-upgrade-gtk-docalma-upgrade-gvfsalma-upgrade-libraw-develalma-upgrade-libsoupalma-upgrade-libsoup-develalma-upgrade-mutter-develalma-upgrade-nautilusalma-upgrade-nautilus-develalma-upgrade-packagekitalma-upgrade-packagekit-command-not-foundalma-upgrade-packagekit-cronalma-upgrade-packagekit-glibalma-upgrade-packagekit-glib-develalma-upgrade-packagekit-gstreamer-pluginalma-upgrade-packagekit-gtk3-modulealma-upgrade-pipewirealma-upgrade-pipewire-develalma-upgrade-pipewire-docalma-upgrade-pipewire-libsalma-upgrade-pipewire-utilsalma-upgrade-pipewire0.2-develalma-upgrade-pipewire0.2-libsalma-upgrade-potracealma-upgrade-pygobject3-develalma-upgrade-python3-gobjectalma-upgrade-python3-gobject-basealma-upgrade-trackeralma-upgrade-tracker-develalma-upgrade-vte-profilealma-upgrade-vte291alma-upgrade-vte291-develalma-upgrade-webrtc-audio-processingalma-upgrade-xdg-desktop-portal-gtk
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.