Lucene search
K

169 matches found

PyPA
PyPA
added 2018/11/08 8:29 a.m.7 views

PYSEC-2018-141

In Exiv2 0.26, Exiv2::IptcParser::decode in iptc.cpp called from psdimage.cpp in the PSD image reader may suffer from a denial of service heap-based buffer over-read caused by an integer overflow via a crafted PSD image file...

6.5CVSS7.2AI score0.01816EPSS
Exploits0References9Affected Software1
CNVD
CNVD
added 2018/11/08 12:0 a.m.3 views

Exiv2 integer overflow vulnerability (CNVD-2019-07086)

Exiv2 is a cross-platform C++ library and command line utility for managing image metadata. An integer overflow vulnerability in Exiv2::IptcParser::decode in iptc.cpp in Exiv2 0.26 can be exploited by an attacker to cause a denial of service via specially crafted PSD image files...

6.5CVSS6.7AI score0.01816EPSS
Exploits0References1
CNVD
CNVD
added 2018/09/21 12:0 a.m.3 views

Apache Tika Denial of Service Vulnerability

Apache Tika is the United States Apache Apache Software Foundation, an integrated POI using Java programs to provide read and write Microsoft Office format documents open-source library, Pdfbox read and create PDF documents pure Java class library and for text extraction work provides a unified...

5.5CVSS5.5AI score0.02509EPSS
Exploits0References1
OSV
OSV
added 2018/09/19 2:29 p.m.2 views

UBUNTU-CVE-2018-8017

In Apache Tika 1.2 to 1.18, a carefully crafted file can trigger an infinite loop in the IptcAnpaParser...

5.5CVSS5.8AI score0.02509EPSS
Exploits0References4
OSV
OSV
added 2018/09/09 12:0 a.m.3 views

UBUNTU-CVE-2018-16750

In ImageMagick 7.0.7-29 and earlier, a memory leak in the formatIPTCfromBuffer function in coders/meta.c was found...

6.5CVSS6.7AI score0.02914EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2018/09/01 12:0 a.m.5 views

PT-2018-3614 · Exiv2 +7 · Exiv2 +7

Name of the Vulnerable Software and Affected Versions: Exiv2 version 0.26 Description: The issue is related to the Exiv2::IptcParser::decode function in the iptc.cpp file, which may cause a denial of service due to a heap-based buffer over-read. This is caused by an integer overflow when processi...

9.8CVSS7AI score0.04296EPSS
Exploits64References340
Fedora
Fedora
added 2018/08/09 4:53 p.m.57 views

[SECURITY] Fedora 27 Update: exiv2-0.26-12.fc27

A command line utility to access image metadata, allowing one to: print the Exif metadata of Jpeg images as summary info, interpreted value s, or the plain data for each tag print the Iptc metadata of Jpeg images print the Jpeg comment of Jpeg images set, add and delete Exif and Iptc metadata of...

9.8CVSS1.6AI score0.0296EPSS
Exploits15
Fedora
Fedora
added 2018/08/07 1:20 a.m.49 views

[SECURITY] Fedora 28 Update: exiv2-0.26-12.fc28

A command line utility to access image metadata, allowing one to: print the Exif metadata of Jpeg images as summary info, interpreted value s, or the plain data for each tag print the Iptc metadata of Jpeg images print the Jpeg comment of Jpeg images set, add and delete Exif and Iptc metadata of...

9.8CVSS1.6AI score0.0296EPSS
Exploits11
Fedora
Fedora
added 2018/05/19 9:35 p.m.66 views

[SECURITY] Fedora 27 Update: exiv2-0.26-10.fc27

A command line utility to access image metadata, allowing one to: print the Exif metadata of Jpeg images as summary info, interpreted value s, or the plain data for each tag print the Iptc metadata of Jpeg images print the Jpeg comment of Jpeg images set, add and delete Exif and Iptc metadata of...

8.1CVSS1.6AI score0.01865EPSS
Exploits3
Fedora
Fedora
added 2018/05/19 9:25 p.m.45 views

[SECURITY] Fedora 28 Update: exiv2-0.26-10.fc28

A command line utility to access image metadata, allowing one to: print the Exif metadata of Jpeg images as summary info, interpreted value s, or the plain data for each tag print the Iptc metadata of Jpeg images print the Jpeg comment of Jpeg images set, add and delete Exif and Iptc metadata of...

8.1CVSS1.6AI score0.01865EPSS
Exploits3
CNVD
CNVD
added 2018/04/19 12:0 a.m.2 views

Exiv2 IptcData::printStructure Information Disclosure Vulnerability

Exiv2 is a C++ library for extracting EXIF, LPTC and XMP metadata information from images. An information disclosure vulnerability exists in Exiv2 version 0.26 iptc.c/IptcData::printStructure, which can be exploited by an attacker to cause a crash or information disclosure...

8.1CVSS6.4AI score0.01992EPSS
Exploits1References1
Cvelist
Cvelist
added 2018/04/04 9:0 p.m.24 views

CVE-2018-9305

In Exiv2 0.26, an out-of-bounds read in IptcData::printStructure in iptc.c could result in a crash or information leak, related to the "== 0x1c" case...

6.4AI score0.01992EPSS
Exploits1References5
CNVD
CNVD
added 2018/03/30 12:0 a.m.1 views

Exiv2 'Exiv2::IptcData::printStructure' function out-of-bounds read vulnerability

Exiv2 is a set of C++ libraries and command line applications for managing image metadata by software developer Andreas Huggel, which provides fast and easy reading and writing of image metadata in a variety of EXIF, IPTC and XMP formats. An out-of-bounds read vulnerability exists in the...

6.9AI score
Exploits0References1
RedhatCVE
RedhatCVE
added 2018/02/14 1:19 p.m.28 views

CVE-2017-17724

An integer underflow, leading to heap-based out-of-bound read, was found in the way Exiv2 library prints IPTC Photo Metadata embedded in an image. By persuading a victim to open a crafted image, a remote attacker could crash the application or possibly retrieve a portion of memory...

6.5CVSS7.3AI score0.02172EPSS
Exploits1References1
CNVD
CNVD
added 2018/02/13 12:0 a.m.3 views

Exiv2 'Exiv2::IptcData::printStructure' function out-of-bounds read vulnerability

Exiv2 is a set of C++ libraries and command line applications for managing image metadata by software developer Andreas Huggel, which provides fast and easy reading and writing of image metadata in a variety of EXIF, IPTC and XMP formats. An out-of-bounds read vulnerability exists in the...

6.5CVSS6.9AI score0.02172EPSS
Exploits1References1
PyPA
PyPA
added 2018/02/12 10:29 p.m.6 views

PYSEC-2018-123

In Exiv2 0.26, there is a heap-based buffer over-read in the Exiv2::IptcData::printStructure function in iptc.cpp, related to the "!= 0x1c" case. Remote attackers can exploit this vulnerability to cause a denial of service via a crafted TIFF file...

6.5CVSS6.8AI score0.02172EPSS
Exploits1References6Affected Software1
RedhatCVE
RedhatCVE
added 2017/11/10 6:50 p.m.37 views

CVE-2017-16353

GraphicsMagick 1.3.26 is vulnerable to a memory information disclosure vulnerability found in the DescribeImage function of the magick/describe.c file, because of a heap-based buffer over-read. The portion of the code containing the vulnerability is responsible for printing the IPTC Profile...

6.5CVSS2.7AI score0.13679EPSS
Exploits3References1
seebug.org
seebug.org
added 2017/11/06 12:0 a.m.40 views

GraphicsMagick Multiple Vulnerabilities

Vulnerabilities summary The following advisory describes two 2 vulnerabilities found in GraphicsMagick. GraphicsMagick is “The swiss army knife of image processing. Comprised of 267K physical lines according to David A. Wheeler’s SLOCCount of source code in the base package or 1,225K including 3r...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2017/11/03 12:0 a.m.70 views

GraphicsMagick Memory Disclosure / Heap Overflow

'''Vulnerabilities summary The following advisory describes two 2 vulnerabilities found in GraphicsMagick. GraphicsMagick is aThe swiss army knife of image processing. Comprised of 267K physical lines according to David A. Wheeleras SLOCCount of source code in the base package or 1,225K including...

8AI score0.14512EPSS
Exploits4
0day.today
0day.today
added 2017/11/03 12:0 a.m.93 views

GraphicsMagick - Memory Disclosure / Heap Overflow Exploit

Exploit for multiple platform in category dos / poc '''Vulnerabilities summary The following advisory describes two 2 vulnerabilities found in GraphicsMagick. GraphicsMagick is “The swiss army knife of image processing. Comprised of 267K physical lines according to David A. Wheeler’s SLOCCount of...

6.8CVSS8.1AI score0.14512EPSS
Exploits4
Rows per page
Query Builder