PyPI package
bsdiff4
pkg:pypi/bsdiff4
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-15904 | — | < 1.2.0 | 1.2.0 | Jul 22, 2020 | A buffer overflow in the patching routine of bsdiff4 before 1.2.0 allows an attacker to write to heap memory (beyond allocated bounds) via a crafted patch file. |
- CVE-2020-15904Jul 22, 2020affected < 1.2.0fixed 1.2.0
A buffer overflow in the patching routine of bsdiff4 before 1.2.0 allows an attacker to write to heap memory (beyond allocated bounds) via a crafted patch file.