Unrated severityNVD Advisory· Published Aug 19, 2021· Updated Aug 4, 2024
CVE-2020-18897
CVE-2020-18897
Description
An use-after-free vulnerability in the libpff_item_tree_create_node function of libyal Libpff before 20180623 allows attackers to cause a denial of service (DOS) or execute arbitrary code via a crafted pff file.
Affected products
2- libyal/Libpffdescription
Patches
Vulnerability mechanics
References
2- github.com/libyal/libpff/issues/61mitrex_refsource_MISC
- github.com/libyal/libpff/issues/62mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.