GHSA-g4m4-9q4c-mfw6: Fiona affected by CVE-2020-14152 related to madler-zlib
Vulnerability scan of fiona shows CVE-2020-14152
References
- github.com/OSGeo/gdal/commit/075480a3cba13c9dd2ab4e39e92d6147a6c98eca
- github.com/Toblerity/Fiona
- github.com/Toblerity/Fiona/commit/07708211726e276e22dedb9cd567b4f6a7b8c809
- github.com/Toblerity/Fiona/security/advisories/GHSA-g4m4-9q4c-mfw6
- github.com/advisories/GHSA-g4m4-9q4c-mfw6
- github.com/libjpeg-turbo/libjpeg-turbo/commit/da2a27ef056a0179cbd80f9146e58b89403d9933
- github.com/libjpeg-turbo/libjpeg-turbo/issues/500
- nvd.nist.gov/vuln/detail/CVE-2020-14152
Code Behaviors & Features
Detect and mitigate GHSA-g4m4-9q4c-mfw6 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →