15 matches found
Astra Linux - уязвимость в exiv2
An integer overflow in CrwMap::encode0x1810 of Exiv2 0.27.3 allows attackers to trigger a heap-based buffer overflow and cause a denial of service DOS by manipulating metadata...
Out-of-bounds read in Exiv2::Internal::CrwMap::encode
...
exiv2: Integer overflow in CrwMap:encode0x1810 leading to heap-based buffer overflow and DoS
A flaw was found in exiv2. A integer wraparound in the CrwMap:encode0x1810 function leads to memcpy call with a very large size allowing an attacker, who can provide a malicious image, to crash an application which uses the exiv2 library. The highest threat from this vulnerability is to service...
exiv2: Out-of-bounds read in Exiv2::Internal::CrwMap::encode
There is a flaw in exiv2. An attacker who is able to submit a crafted file to be processed by an application linked with exiv2 could trigger an out-of-bounds read. The greatest risk of this flaw is to application availability and data confidentiality...
exiv2: Integer overflow in CrwMap:encode0x1810 leading to heap-based buffer overflow and DoS
A flaw was found in exiv2. A integer wraparound in the CrwMap:encode0x1810 function leads to memcpy call with a very large size allowing an attacker, who can provide a malicious image, to crash an application which uses the exiv2 library. The highest threat from this vulnerability is to service...
Exiv2 integer overflow vulnerability (CNVD-2021-62191)
Exiv2 is a cross-platform C++ library and command line utility for managing image metadata. An integer overflow vulnerability exists in CrwMap::encode0x1810 in Exiv2 version 0.27.3. An attacker could exploit this vulnerability to cause a denial of service via a specially crafted image file...
DEBIAN-CVE-2021-31292
An integer overflow in CrwMap::encode0x1810 of Exiv2 0.27.3 allows attackers to trigger a heap-based buffer overflow and cause a denial of service DOS via crafted metadata...
CVE-2021-31292
An integer overflow in CrwMap::encode0x1810 of Exiv2 0.27.3 allows attackers to trigger a heap-based buffer overflow and cause a denial of service DOS via crafted metadata...
PYSEC-2021-877
An integer overflow in CrwMap::encode0x1810 of Exiv2 0.27.3 allows attackers to trigger a heap-based buffer overflow and cause a denial of service DOS via crafted metadata...
Integer overflow
An integer overflow in CrwMap::encode0x1810 of Exiv2 0.27.3 allows attackers to trigger a heap-based buffer overflow and cause a denial of service DOS via crafted metadata...
CVE-2021-31292
An integer overflow in CrwMap::encode0x1810 of Exiv2 0.27.3 allows attackers to trigger a heap-based buffer overflow and cause a denial of service DOS via crafted metadata...
PYSEC-2021-877
An integer overflow in CrwMap::encode0x1810 of Exiv2 0.27.3 allows attackers to trigger a heap-based buffer overflow and cause a denial of service DOS via crafted metadata...
Exiv2 输入验证错误漏洞
Exiv2 is a cross-platform C++ library and command line utility for managing image metadata. An integer overflow vulnerability exists in CrwMap::encode0x1810 in Exiv2 version 0.27.3. An attacker could exploit this vulnerability to cause a denial of service via a specially crafted image file...
CVE-2021-31292
Exiv2 vulnerability CVE-2021-31292: an integer overflow in CrwMap::encode0x1810 in Exiv2 0.27.3 allows a heap-based buffer overflow via crafted metadata, enabling a denial of service. The issue affects Exiv2’s image metadata handling (library and related tooling) and is addressed by upgrading to ...
PT-2021-4584 · Exiv2 +8 · Exiv2 +8
Name of the Vulnerable Software and Affected Versions: Exiv2 version 0.27.3 Description: The issue is related to an integer overflow in the CrwMap::encode0x1810 function of Exiv2, which can be exploited by attackers to trigger a heap-based buffer overflow, causing a denial of service DOS via...