CVE-2020-29242

MEDIUM

dhowden <2020-11-19 - Use After Free

Title source: llm
STIX 2.1

Description

dhowden tag before 2020-11-19 allows "panic: runtime error: index out of range" via readPICFrame.

References (1)

Core 1
Core References
Exploit, Patch, Third Party Advisory x_refsource_misc
https://github.com/dhowden/tag/issues/77

Scores

CVSS v3 6.5
EPSS 0.0112
EPSS Percentile 61.9%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Details

CWE
CWE-129
Status published
Products (2)
dhowden/tag 0 - 0.0.0-20201120070457-d52dcb253c63Go
tag_project/tag < 2020-11-19
Published Dec 28, 2020
Tracked Since Feb 18, 2026