Lucene search
GoogleOSV:CVE-2021-21235HistoryJan 06, 2021 - 2:15 a.m.
CVE-2021-21235
2021-01-0602:15:12
Google
osv.dev
5
kamadak-exif is an exif parsing library written in pure Rust. In kamadak-exif version 0.5.2, there is an infinite loop in parsing crafted PNG files. Specifically, reader::read_from_container can cause an infinite loop when a crafted PNG file is given. This is fixed in version 0.5.3. No workaround is available. Applications that do not pass files with the PNG signature to Reader::read_from_container are not affected.
Related
osv
osv
kamadak-exif DoS with untrusted PNG data
2021-01-04 12:00:00
kamadak-exif vulnerable to Infinite loop when parsing PNG files
2022-10-06 19:53:39
cve
cve
CVE-2021-21235
2021-01-06 02:15:12
ubuntucve
ubuntucve
CVE-2021-21235
2021-01-06 00:00:00
rustsec
rustsec
kamadak-exif DoS with untrusted PNG data
2021-01-04 12:00:00
prion
prion
Code injection
2021-01-06 02:15:00
debiancve
debiancve
CVE-2021-21235
2021-01-06 02:15:12
nvd
nvd
CVE-2021-21235
2021-01-06 02:15:12
github
github
kamadak-exif vulnerable to Infinite loop when parsing PNG files
2022-10-06 19:53:39
cvelist
cvelist
CVE-2021-21235 Infinite loop in parsing PNG files in
2021-01-06 01:15:14