Format string vulnerability in panoFileOutputNamesCreate() in libpano13 2.9.20~rc2+dfsg-3 and earlier can lead to read and write arbitrary memory values.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
History
07 Nov 2023, 03:29
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
30 Jul 2022, 03:43
Type | Values Removed | Values Added |
---|---|---|
References |
|
26 Apr 2021, 17:09
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:* |
|
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VYDYBKHT2MNMQCUMAVJNZW4VH6MD5BOF/ - Mailing List, Third Party Advisory | |
References | (MLIST) https://lists.debian.org/debian-lts-announce/2021/04/msg00010.html - Mailing List, Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FVJRXUOBN56ZWP6QQ3NTA6DIFZMDZAEQ/ - Mailing List, Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JE6YZSXNVD6WZ3AG3ENL2DIHQFF24LYX/ - Mailing List, Third Party Advisory |
24 Apr 2021, 22:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
15 Apr 2021, 17:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
12 Apr 2021, 22:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
09 Apr 2021, 13:11
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://bugzilla.redhat.com/show_bug.cgi?id=1946284 - Issue Tracking, Third Party Advisory | |
References | (MISC) https://sourceforge.net/projects/panotools/files/libpano13/libpano13-2.9.20/ - Product, Third Party Advisory | |
CVSS |
v2 : v3 : |
v2 : 7.5
v3 : 9.8 |
CPE | cpe:2.3:a:libpano13_project:libpano13:*:*:*:*:*:*:*:* cpe:2.3:a:libpano13_project:libpano13:2.9.20:rc1:*:*:*:*:*:* cpe:2.3:a:libpano13_project:libpano13:2.9.20:rc2:*:*:*:*:*:* |
05 Apr 2021, 22:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-04-05 22:15
Updated : 2023-12-10 13:55
NVD link : CVE-2021-20307
Mitre link : CVE-2021-20307
CVE.ORG link : CVE-2021-20307
JSON object : View
Products Affected
debian
- debian_linux
fedoraproject
- fedora
libpano13_project
- libpano13
CWE
CWE-134
Use of Externally-Controlled Format String