Tsk · The Sleuth Kit · CVE-2020-10232
**Name of the Vulnerable Software and Affected Versions**
The Sleuth Kit (TSK) versions 4.8.0 and earlier
**Description**
A stack buffer overflow issue exists in the YAFFS file timestamp parsing logic within the `yaffsfs istat()` function in `fs/yaffs.c`.
**Recommendations**
For versions 4.8.0 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.