CVE-2020-14154
Mutt before 1.14.3 proceeds with a connection even if, in response to a GnuTLS certificate prompt, the user rejects an expired intermediate certificate.
Source: CVE-2020-14154
[월:] 2020년 06월
CVE-2020-14033
CVE-2020-14033
An issue was discovered in janus-gateway (aka Janus WebRTC Server) through 0.10.0. janus_streaming_rtsp_parse_sdp in plugins/janus_streaming.c has a Buffer Overflow via a crafted RTSP server.
Source: CVE-2020-14033
CVE-2020-14034
CVE-2020-14034
An issue was discovered in janus-gateway (aka Janus WebRTC Server) through 0.10.0. janus_get_codec_from_pt in utils.c has a Buffer Overflow via long value in an SDP Offer packet.
Source: CVE-2020-14034
CVE-2020-14150
CVE-2020-14150
GNU Bison before 3.5.4 allows attackers to cause a denial of service (application crash).
Source: CVE-2020-14150
CVE-2020-14153
CVE-2020-14153
In IJG JPEG (aka libjpeg) before 9d, jdhuff.c has an out-of-bounds array read for certain table pointers.
Source: CVE-2020-14153
CVE-2020-14152
CVE-2020-14152
In IJG JPEG (aka libjpeg) before 9d, jpeg_mem_available() in jmemnobs.c in djpeg does not honor the max_memory_to_use setting, possibly causing excessive memory consumption.
Source: CVE-2020-14152
CVE-2020-14155
CVE-2020-14155
libpcre in PCRE before 8.44 allows an integer overflow via a large number after a (?C substring.
Source: CVE-2020-14155
CVE-2020-14151
CVE-2020-14151
In IJG JPEG (aka libjpeg) before 9d, read_*_pixel() in rdtarga.c in cjpeg mishandles EOF.
Source: CVE-2020-14151
CVE-2018-21245
CVE-2018-21245
Pound before 2.8 allows HTTP request smuggling, a related issue to CVE-2016-10711.
Source: CVE-2018-21245
CVE-2019-20838
CVE-2019-20838
libpcre in PCRE before 8.43 allows a subject buffer over-read in JIT when UTF is disabled, and X or R has more than one fixed quantifier, a related issue to CVE-2019-20454.
Source: CVE-2019-20838