vulnerability

Debian: CVE-2020-18032: graphviz -- security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:M/Au:N/C:P/I:P/A:P)	2021-04-29	2021-05-14	2021-05-18

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

Published

2021-04-29

Added

2021-05-14

Modified

2021-05-18

Description

Buffer Overflow in Graphviz Graph Visualization Tools from commit ID f8b9e035 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (application crash) by loading a crafted file into the "lib/common/shapes.c" component.

Solution

debian-upgrade-graphviz

References

CVE-2020-18032
https://attackerkb.com/topics/CVE-2020-18032
DEBIAN-DLA-2659-1
DEBIAN-DSA-4914
DEBIAN-DSA-4914-1

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today