CVE-2020-28840

Buffer Overflow vulnerability in jpgfile.c in Matthias-Wandel jhead version 3.04, allows local attackers to execute arbitrary code and cause a denial of service (DoS).

Published: Aug 11, 2023
Updated: Aug 22, 2023
CVE: CVE-2020-28840
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.8
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-120

Affected Software
References

Software	From	Fixed in
matthiaswandel / jhead	-	3.04

https://bugs.launchpad.net/ubuntu/+source/jhead/+bug/1900820
https://github.com/F-ZhaoYang/jhead/security/advisories/GHSA-xh27-xwgj-gqw2
https://github.com/Matthias-Wandel/jhead/commit/4827ed31c226dc5ed93603bd649e0e387a1778da
https://github.com/Matthias-Wandel/jhead/issues/8

Vulnerability Database

CVE-2020-28840