Unrated severityNVD Advisory· Published Dec 21, 2020· Updated Aug 4, 2024
CVE-2020-35605
CVE-2020-35605
Description
The Graphics Protocol feature in graphics.c in kitty before 0.19.3 allows remote attackers to execute arbitrary code because a filename containing special characters can be included in an error message.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- kitty/kittydescription
- Range: <0.19.3
- osv-coords2 versionspkg:rpm/opensuse/kitty&distro=openSUSE%20Leap%2015.2pkg:rpm/opensuse/kitty&distro=openSUSE%20Tumbleweed
< 0.16.0-lp152.2.3.1+ 1 more
- (no CPE)range: < 0.16.0-lp152.2.3.1
- (no CPE)range: < 0.21.2-1.2
Patches
Vulnerability mechanics
References
3- www.debian.org/security/2020/dsa-4819mitrevendor-advisoryx_refsource_DEBIAN
- github.com/kovidgoyal/kitty/commit/82c137878c2b99100a3cdc1c0f0efea069313901mitrex_refsource_MISC
- github.com/kovidgoyal/kitty/issues/3128mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.