Lucene search
K

7 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerability in exiv2

Exiv2 0.27.2 allows attackers to cause a crash in the Exiv2::getULong function in types.cpp, when called from Exiv2::Internal::CiffDirectory::readDirectory in crwimageint.cpp. This occurs because there is no validation of the relationship between the total size and the offset and size...

6.5CVSS6.8AI score0.01851EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2022/01/19 8:0 a.m.5 views

Exiv2 0.27.2 allows attackers to trigger a crash in Exiv2::getULong in types.cpp when called from Exiv2::Internal::CiffDirectory::readDirectory in crwimage_int.cpp because there is no validation of the relationship of the total size to the offset and size.

...

6.5CVSS6.9AI score0.01851EPSS
Exploits0
OSV
OSV
added 2019/10/09 7:15 p.m.2 views

DEBIAN-CVE-2019-17402

Exiv2 0.27.2 allows attackers to trigger a crash in Exiv2::getULong in types.cpp when called from Exiv2::Internal::CiffDirectory::readDirectory in crwimageint.cpp, because there is no validation of the relationship of the total size to the offset and size...

6.5CVSS6.8AI score0.01851EPSS
Exploits0References1
PyPA
PyPA
added 2019/10/09 7:15 p.m.6 views

PYSEC-2019-247

Exiv2 0.27.2 allows attackers to trigger a crash in Exiv2::getULong in types.cpp when called from Exiv2::Internal::CiffDirectory::readDirectory in crwimageint.cpp, because there is no validation of the relationship of the total size to the offset and size...

6.5CVSS6.8AI score0.01851EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2019/10/09 7:15 p.m.4 views

UBUNTU-CVE-2019-17402

Exiv2 0.27.2 allows attackers to trigger a crash in Exiv2::getULong in types.cpp when called from Exiv2::Internal::CiffDirectory::readDirectory in crwimageint.cpp, because there is no validation of the relationship of the total size to the offset and size...

6.5CVSS6.7AI score0.01851EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2019/06/30 12:0 a.m.7 views

PT-2019-5328 · Exiv2 +4 · Exiv2 +4

Name of the Vulnerable Software and Affected Versions: Exiv2 versions prior to 0.27.2 Description: The issue is caused by an integer overflow and out-of-bounds read in the CiffDirectory::readDirectory function. This allows an attacker to cause a denial of service via a crafted CRW image file. The...

9.8CVSS6.9AI score0.04296EPSS
Exploits58References259
OSV
OSV
added 2018/09/28 9:29 a.m.2 views

DEBIAN-CVE-2018-17581

CiffDirectory::readDirectory at crwimageint.cpp in Exiv2 0.26 has excessive stack consumption due to a recursive function, leading to Denial of service...

6.5CVSS6.6AI score0.0235EPSS
Exploits1References1
Rows per page
Query Builder