CVE-2020-36646

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions MediaArea ZenLib versions up to 0.4.38

Description A problematic vulnerability has been found in MediaArea ZenLib. This issue affects the function Ztring::Date From Seconds 1970 Local of the file Source/ZenLib/Ztring.cpp. The manipulation of the argument Value leads to an unchecked return value to null pointer dereference.

Recommendations For MediaArea ZenLib versions up to 0.4.38, upgrade to version 0.4.39 to address this issue. As a temporary workaround, consider restricting the manipulation of the Value argument in the Ztring::Date From Seconds 1970 Local function until the upgrade is applied.

Fix

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-690CWE-476

Related Identifiers

ALT-PU-2024-15493

CVE-2020-36646

DLA-3290-1

MGASA-2023-0046

USN-6048-1

Affected Products

Alt Linux

Linuxmint

Mediaarea Zenlib

Ubuntu

CVE-2020-36646

Weakness Enumeration

Related Identifiers

Affected Products

References · 23