CVE-2020-13790: Out-of-bounds Read
(updated )
mozjpeg has a heap-based buffer over-read in get_rgb_row()
in rdppm.c
via a malformed PPM input file.
References
Detect and mitigate CVE-2020-13790 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →