CVE-2019-20387 in OpenSuse and Debian Products
Published on January 21, 2020
repodata_schema2id in repodata.c in libsolv before 0.7.6 has a heap-based buffer over-read via a last schema whose length is less than the length of the input schema.
Products Associated with CVE-2019-20387
stack.watch emails you whenever new vulnerabilities are published in OpenSuse Libsolv or Debian Linux. Just hit a watch button to start following.
Exploit Probability
EPSS
0.23%
Percentile
45.47%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.