What is CVE-2020-37239?

CVE-2020-37239 is a critical-severity vulnerability in Gegl Libbabl, classified under Double Free. CVSS score: 9.8/10. Published 2026-05-16.

How severe is CVE-2020-37239?

Critical severity. CVSS v3 base score is 9.8 out of 10.

Double Free in Gegl Libbabl

CVE-2020-37239

libbabl 0.1.62 contains a broken double free detection vulnerability that allows attackers to bypass memory safety checks by exploiting signature overwriting in freed chunks. Attackers can call babl_free() twice on the same pointer without…

Vulnerability class: Double Free

EPSS: 0.001 (29.4th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 9.8 (Critical). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H.

Affected products

Gegl Libbabl — versions 0.1.62

Weakness classification (CWE)

CWE-415 — Double Free

References

disclosure@vulncheck.com (exploit)
disclosure@vulncheck.com (product)
disclosure@vulncheck.com (product)
disclosure@vulncheck.com (third-party-advisory)

Frequently asked questions

What is CVE-2020-37239?: CVE-2020-37239 is a critical-severity vulnerability in Gegl Libbabl, classified under Double Free. CVSS score: 9.8/10. Published 2026-05-16.
How severe is CVE-2020-37239?: Critical severity. CVSS v3 base score is 9.8 out of 10.