Lucene search

K
osvGoogleOSV:CVE-2018-10999
HistoryMay 12, 2018 - 4:29 a.m.

CVE-2018-10999

2018-05-1204:29:00
Google
osv.dev
17
exiv2
heap-based buffer
over-read
parsetxtchunk
software
cve-2018-10999

EPSS

0.003

Percentile

65.5%

An issue was discovered in Exiv2 0.26. The Exiv2::Internal::PngChunk::parseTXTChunk function has a heap-based buffer over-read.