CVE-2020-8927

EPSS 0.42%
Published 15.09.2020 10:15:12
Last modified 21.11.2024 05:39:41
Source cve-coordination@google.com
Teams watchlist Login
Open Login

A buffer overflow exists in the Brotli library versions prior to 1.0.8 where an attacker controlling the input length of a "one-shot" decompression request to a script can trigger a crash, which happens when copying over chunks of data larger than 2 GiB. It is recommended to update your Brotli library to 1.0.8 or later. If one cannot update, we recommend to use the "streaming" API as opposed to the "one-shot" API, and impose chunk size limits.

Affected products Warnungen 0 Metrics 4 CWE 2 References 17

Data is provided by the National Vulnerability Database (NVD)

Google ≫ Brotli Version < 1.0.8

Debian ≫ Debian Linux Version9.0

Debian ≫ Debian Linux Version10.0

Fedoraproject ≫ Fedora Version31

Fedoraproject ≫ Fedora Version32

Fedoraproject ≫ Fedora Version33

Fedoraproject ≫ Fedora Version34

Fedoraproject ≫ Fedora Version35

Fedoraproject ≫ Fedora Version36

Canonical ≫ Ubuntu Linux Version16.04 SwEditionesm

Canonical ≫ Ubuntu Linux Version18.04 SwEditionlts

Canonical ≫ Ubuntu Linux Version20.04 SwEditionlts

Opensuse ≫ Leap Version15.2

Microsoft ≫ .Net Version >= 5.0 <= 5.0.14

Microsoft ≫ .Net Core Version >= 3.1 <= 3.1.22

Microsoft ≫ Powershell Version >= 7.0 < 7.0.9

Microsoft ≫ Powershell Version >= 7.1 < 7.1.6

Microsoft ≫ Powershell Version >= 7.2 < 7.2.2

Microsoft ≫ Visual Studio 2019 Version >= 16.0 <= 16.11

Microsoft ≫ Visual Studio 2022 Version >= 17.0 <= 17.0.7

Microsoft ≫ Visual Studio 2022 Version17.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.42%	0.613

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	6.5	3.9	2.5	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
nvd@nist.gov	6.4	10	4.9	AV:N/AC:L/Au:N/C:N/I:P/A:P
cve-coordination@google.com	5.3	3.9	1.4	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

CWE-130 Improper Handling of Length Parameter Inconsistency

The product parses a formatted message or structure, but it does not handle or incorrectly handles a length field that is inconsistent with the actual length of the associated data.

http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00108.html

Third Party Advisory

Mailing List

https://github.com/google/brotli/releases/tag/v1.0.9

Third Party Advisory

Release Notes

https://lists.debian.org/debian-lts-announce/2020/12/msg00003.html

Third Party Advisory

Mailing List

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/356JOYTWW4BWSZ42SEFLV7NYHL3S3AEH/

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4TOGTZ2ZWDH662ZNFFSZVL3M5AJXV6JF/

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/J4E265WKWKYMK2RYYSIXBEGZTDY5IQE6/