CVE-2020-36646

Summary

A vulnerability classified as problematic has been found in MediaArea ZenLib up to 0.4.38. This affects the function Ztring::Date_From_Seconds_1970_Local of the file Source/ZenLib/Ztring.cpp. The manipulation of the argument Value leads to unchecked return value to null pointer dereference. Upgrading to version 0.4.39 is able to address this issue. The identifier of the patch is 6475fcccd37c9cf17e0cfe263b5fe0e2e47a8408. It is recommended to upgrade the affected component. The identifier VDB-217629 was assigned to this vulnerability.

Affected Software

VendorProductVersion RangeStatus
MediaAreaZenLib0.4.0affected
MediaAreaZenLib0.4.1affected
MediaAreaZenLib0.4.2affected
MediaAreaZenLib0.4.3affected
MediaAreaZenLib0.4.4affected
MediaAreaZenLib0.4.5affected
MediaAreaZenLib0.4.6affected
MediaAreaZenLib0.4.7affected
MediaAreaZenLib0.4.8affected
MediaAreaZenLib0.4.9affected
MediaAreaZenLib0.4.10affected
MediaAreaZenLib0.4.11affected
MediaAreaZenLib0.4.12affected
MediaAreaZenLib0.4.13affected
MediaAreaZenLib0.4.14affected
MediaAreaZenLib0.4.15affected
MediaAreaZenLib0.4.16affected
MediaAreaZenLib0.4.17affected
MediaAreaZenLib0.4.18affected
MediaAreaZenLib0.4.19affected
MediaAreaZenLib0.4.20affected
MediaAreaZenLib0.4.21affected
MediaAreaZenLib0.4.22affected
MediaAreaZenLib0.4.23affected
MediaAreaZenLib0.4.24affected
MediaAreaZenLib0.4.25affected
MediaAreaZenLib0.4.26affected
MediaAreaZenLib0.4.27affected
MediaAreaZenLib0.4.28affected
MediaAreaZenLib0.4.29affected
MediaAreaZenLib0.4.30affected
MediaAreaZenLib0.4.31affected
MediaAreaZenLib0.4.32affected
MediaAreaZenLib0.4.33affected
MediaAreaZenLib0.4.34affected
MediaAreaZenLib0.4.35affected
MediaAreaZenLib0.4.36affected
MediaAreaZenLib0.4.37affected
MediaAreaZenLib0.4.38affected

Weaknesses

  • CWE-690: CWE-690 Unchecked Return Value to NULL Pointer Dereference

ADP Enrichment

CVE Program Container

Additional References

References