{"id":"CVE-2020-26797","details":"Mediainfo before version 20.08 has a heap buffer overflow vulnerability via MediaInfoLib::File_Gxf::ChooseParser_ChannelGrouping.","modified":"2026-04-11T12:34:06.703002Z","published":"2021-03-18T20:15:12.893Z","database_specific":{"unresolved_ranges":[{"extracted_events":[{"last_affected":"33"}],"cpe":"cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*","source":"CPE_FIELD"}]},"references":[{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WYI2372RLWYQVLSYD5PBI4YTXNMVDZCZ/"},{"type":"FIX","url":"https://sourceforge.net/p/mediainfo/bugs/1154/"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/mediaarea/mediainfolib","events":[{"introduced":"0"},{"fixed":"84d951c066868751096cf47487b453841e90f96f"}],"database_specific":{"extracted_events":[{"introduced":"0"},{"fixed":"20.08"}],"cpe":"cpe:2.3:a:mediaarea:mediainfo:*:*:*:*:*:*:*:*","source":"CPE_FIELD"}}],"versions":["v0.7.74","v0.7.76","v0.7.78","v0.7.80","v0.7.81","v0.7.82","v0.7.83","v0.7.84","v0.7.85","v0.7.86","v0.7.87","v0.7.88","v0.7.89","v0.7.90","v0.7.91","v0.7.92","v0.7.93","v0.7.94","v0.7.95","v0.7.96","v0.7.97","v0.7.98","v0.7.99","v17.10","v17.12","v18.03","v18.03.1","v18.05","v18.08","v18.08.1","v18.12","v19.04","v19.07","v19.09","v20.03"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-26797.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}