← back
CVE-2020-24994

CVE-2020-24994

EPSS 2.6%
Stack overflow in the parse_tag function in libass/ass_parse.c in libass before 0.15.0 allows remote attackers to cause a denial of service or remote code execution via a crafted file.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/libass/libass/commit/6835731c2fe4164a0c50bc91d12c43b2a2b4ehttps://github.com/libass/libass/issues/422https://github.com/libass/libass/issues/422#issuecomment-806002919https://github.com/libass/libass/issues/423