Lucene search

K
osvGoogleOSV:CVE-2018-20097
HistoryDec 12, 2018 - 10:29 a.m.

CVE-2018-20097

2018-12-1210:29:00
Google
osv.dev
15
exiv2
tiffparserworker
denial of service

EPSS

0.009

Percentile

82.9%

There is a SEGV in Exiv2::Internal::TiffParserWorker::findPrimaryGroups of tiffimage_int.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of service attack.