SUSE CVE-2017-11336

There is a heap-based buffer over-read in the Image::printIFDStructure function in image.cpp in Exiv2 0.26. A Crafted input will lead to a remote denial of service attack...

SUSE CVE-2017-11339

There is a heap-based buffer overflow in the Image::printIFDStructure function of image.cpp in Exiv2 0.26. A Crafted input will lead to a remote denial of service attack...

exiv2: stack exhaustion issue in the printIFDStructure function may lead to DoS

The exiv2 program is susceptible to a stack exhaustion issue via a crafted file. The cause of this vulnerability, is due to a flaw in the code which could allow remote attackers to cause a denial of service DOS. The highest threat from this vulnerability is availability...

Exiv2 Infinite Loop Vulnerability

Exiv2 is a cross-platform C++ library and command line utility for managing image metadata. An infinite loop vulnerability in the Exiv2::Image::printIFDStructure function in image.cpp in Exiv2 0.27-RC1 can be exploited by an attacker to cause a denial of service via specially crafted input...

Exiv2 Denial of Service Vulnerability (CNVD-2018-03262)

Exiv2 is a set of C++ libraries and command line applications for managing image metadata by software developer Andreas Huggel, which provides fast and easy reading and writing of image metadata in a variety of EXIF, IPTC and XMP formats. A security vulnerability exists in the...

PYSEC-2017-118

There is a heap-based buffer over-read in the Image::printIFDStructure function in image.cpp in Exiv2 0.26. A Crafted input will lead to a remote denial of service attack...

Exiv2 'Image::printIFDStructure' heap buffer overflow vulnerability

Exiv2 is a cross-platform C++ library and command line utility for managing image metadata. The Image::printIFDStructure function in Exiv2's image.cpp suffers from a heap buffer overflow that allows an attacker to conduct a remote denial-of-service attack with specially designed inputs...

exiv2 'Image::printIFDStructure' Denial of Service Vulnerability

Exiv2 is a suite of C++ libraries and command line applications for managing image metadata, providing fast and easy reading and writing of image metadata in a wide range of EXIF, IPTC and XMP formats. The Image::printIFDStructure security vulnerability in Exiv2 version 0.26. A remote attacker ca...

PYSEC-2017-142

There is an invalid free in Image::printIFDStructure that leads to a Segmentation fault in Exiv2 0.26. A crafted input will lead to a remote denial of service attack...

PYSEC-2017-112

An issue was discovered in Exiv2 0.26. When the data structure of the structure ifd is incorrect, the program assigns pValue to 0x0, and the value of pValue is 0x0. TiffImageEntry::doWriteImage will use the value of pValue to cause a segmentation fault. To exploit this vulnerability, someone must...