52 matches found
Astra Linux – Vulnerability in gst-plugins-base1.0
GStreamer EXIF Metadata Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability, but the attack vectors may va...
EUVD-2004-0979
Malware in sbrugna...
EUVD-2016-1662
Malware in sbrugna...
EUVD-2022-7148
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2018-5809
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An error within the LibRaw::parseexif function internal/dcrawcommon.cpp in LibRaw versions prior to 0.18.9 can be exploited to cause a stack-based buffer overfl...
gstreamer: EXIF Metadata Parsing Integer Overflow
A flaw was found in the GStreamer library. This flaw allows a remote attacker to send specially crafted content to the victim, allowing for arbitrary code execution within the context of the affected installation's process. The vulnerability is caused by improper parsing of EXIF metadata and a la...
AZL-45048 CVE-2024-4453 affecting package gstreamer1-plugins-base 1.20.0-3
GStreamer EXIF Metadata Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...
AZL-43432 CVE-2024-4453 affecting package gstreamer1-plugins-base 1.20.0-3
GStreamer EXIF Metadata Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...
SUSE CVE-2004-0981
Buffer overflow in the EXIF parsing routine in ImageMagick before 6.1.0 allows remote attackers to execute arbitrary code via a certain image file...
SUSE CVE-2018-5809
An error within the "LibRaw::parseexif" function internal/dcrawcommon.cpp in LibRaw versions prior to 0.18.9 can be exploited to cause a stack-based buffer overflow and subsequently execute arbitrary code...
SUSE CVE-2019-11042
When PHP EXIF extension is parsing EXIF information from an image, e.g. via exifreaddata function, in PHP versions 7.1.x below 7.1.31, 7.2.x below 7.2.21 and 7.3.x below 7.3.8 it is possible to supply it with data what will cause it to read past the allocated buffer. This may lead to information...
Ubuntu: Security Advisory (USN-7-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
The vulnerability of EXIF_IFD-interoperability and EXIF_IFD-EXIF libraries for grammatical analysis of EXIF files in libexif, related to uncontrolled resource consumption, allows attackers to cause service failures. [source-iocs-preserved const=EXIF_IFD_EXIF,EXIF_IFD_INTEROPERABILITY]
The vulnerability of EXIFIFD-interoperability and EXIFIFD-EXIF libraries for grammatical analysis of EXIF files related to libexif involves an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service failures. source-iocs-preserved...
The vulnerability of the library for EXIF file grammar analysis in libexif, which arises from reading beyond the permissible buffer limit, allows an intruder to access confidential data and also causes service failure.
The vulnerability of the library for EXIF file parsing in libexif is related to reading data beyond the permissible buffer limits. Exploiting this vulnerability could allow an attacker to access confidential data, as well as cause service failures...
The vulnerability of the library for EXIF file grammar analysis in libexif, due to the lack of checks for division by zero, allows a perpetrator to cause a service failure.
The vulnerability of the library for EXIF file parsing in libexif is related to the lack of checks for division by zero. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the library for EXIF file grammar analysis in libexif, related to uncontrolled resource consumption, allows a violator to cause a service failure.
The vulnerability of the library for EXIF file parsing in libexif is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service failures...
CVE-2021-21235
Summary (CVE-2021-21235): kamadak-exif (Rust) v0.5.2 contains an infinite loop in PNG parsing via reader::read_from_container when given crafted PNG files. The issue is fixed in v0.5.3; upgrade to 0.5.3 to mitigate. Applications that do not pass PNG-signature files to Reader::read_from_container ...
php: Out of bounds read when parsing EXIF information
When PHP EXIF extension is parsing EXIF information from an image, e.g. via exifreaddata function, in PHP versions 7.2.x below 7.2.26, 7.3.x below 7.3.13 and 7.4.0 it is possible to supply it with data what will cause it to read past the allocated buffer. This may lead to information disclosure o...
Information Disclosure
php7 is vulnerable to information disclosure. The vulnerability exists while parsing EXIF data with exifreaddata function, it is possible for malicious data to cause PHP to read one byte of uninitialized memory...
LibRaw Buffer Overflow Vulnerability (CNVD-2020-51757)
LibRaw is a C++ library from the LibRaw team for processing RAW CRW/CR2, NEF, RAF, DNG, andothers format images. A buffer overflow vulnerability exists in the 'parseexif' function of the metadataexifgps.cpp file in versions prior to LibRaw 0.20-Beta3. The vulnerability stems from a network system...