libass 0.15.x before 0.15.1 has a heap-based buffer overflow in decode_chars (called from decode_font and process_text) because the wrong integer data type is used for subtraction.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2021-07-20T06:47:14

Updated: 2024-08-04T17:30:08.337Z

Reserved: 2021-07-20T00:00:00

Link: CVE-2020-36430

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-07-20T07:15:07.817

Modified: 2023-11-07T03:22:15.430

Link: CVE-2020-36430

cve-icon Redhat

No data.