Lucene search
+L

328 matches found

UbuntuCve
UbuntuCve
added 2018/03/06 12:0 a.m.32 views

CVE-2018-7729

An issue was discovered in Exempi through 2.4.4. There is a stack-based buffer over-read in the PostScriptMetaHandler::ParsePSFile function in XMPFiles/source/FileHandlers/PostScriptHandler.cpp...

5.5CVSS6.4AI score0.01253EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2018/03/06 12:0 a.m.23 views

CVE-2018-7728

An issue was discovered in Exempi through 2.4.4. XMPFiles/source/FileHandlers/TIFFHandler.cpp mishandles a case of a zero length, leading to a heap-based buffer over-read in the MD5Update function in third-party/zuid/interfaces/MD5.cpp...

5.5CVSS6.5AI score0.01346EPSS
Exploits1References2
OSV
OSV
added 2018/03/06 12:0 a.m.4 views

UBUNTU-CVE-2018-7730

An issue was discovered in Exempi through 2.4.4. A certain case of a 0xffffffff length is mishandled in XMPFiles/source/FormatSupport/PSIRFileWriter.cpp, leading to a heap-based buffer over-read in the PSDMetaHandler::CacheFileData function...

5.5CVSS6AI score0.01425EPSS
Exploits1References3
OSV
OSV
added 2018/03/06 12:0 a.m.2 views

UBUNTU-CVE-2018-7731

An issue was discovered in Exempi through 2.4.4. XMPFiles/source/FormatSupport/WEBPSupport.cpp does not check whether a bitstream has a NULL value, leading to a NULL pointer dereference in the WEBP::VP8XChunk class...

5.5CVSS6.3AI score0.01304EPSS
Exploits1References3
OSV
OSV
added 2018/03/06 12:0 a.m.4 views

UBUNTU-CVE-2018-7729

An issue was discovered in Exempi through 2.4.4. There is a stack-based buffer over-read in the PostScriptMetaHandler::ParsePSFile function in XMPFiles/source/FileHandlers/PostScriptHandler.cpp...

5.5CVSS6.6AI score0.01253EPSS
Exploits1References3
OSV
OSV
added 2018/03/06 12:0 a.m.5 views

UBUNTU-CVE-2018-7728

An issue was discovered in Exempi through 2.4.4. XMPFiles/source/FileHandlers/TIFFHandler.cpp mishandles a case of a zero length, leading to a heap-based buffer over-read in the MD5Update function in third-party/zuid/interfaces/MD5.cpp...

5.5CVSS6.4AI score0.01346EPSS
Exploits1References3
OSV
OSV
added 2016/03/07 7:58 p.m.6 views

MGASA-2016-0101 Updated exempi exiv2 packages fix security vulnerability

exempi contains code to protect against a denial-service-attack related to XML entity expansion "billion laughs attack", but it was not compiled into the Mageia package because BanAllEntityUsage was not defined when the package was compiled. This has been corrected by recompiling it with the...

7.2AI score
Exploits0References3
Mageia
Mageia
added 2016/03/07 7:58 p.m.17 views

Updated exempi exiv2 packages fix security vulnerability

exempi contains code to protect against a denial-service-attack related to XML entity expansion "billion laughs attack", but it was not compiled into the Mageia package because BanAllEntityUsage was not defined when the package was compiled. This has been corrected by recompiling it with the...

2.7AI score
Exploits0References2
Rows per page
Query Builder