2 matches found
OpenExif 'ExifImageFile::readImage' Function Denial of Service Vulnerability
OpenExif is an object-oriented library for accessing image files in Exif format. A security vulnerability exists in the 'ExifImageFile::readImage' function of the ExifImageFileRead.cpp file in OpenExif version 2.1.4. A remote attacker can exploit this vulnerability to cause a denial of service...
CVE-2017-11118
The CVE-2017-11118 entry concerns OpenExif 2.1.4. The vulnerability exists in ExifImageFileRead.cpp within the function ExifImageFile::readImage, where processing a specially crafted JPEG can be exploited by remote attackers to trigger a denial of service via an infinite loop and high CPU usage. ...