21 matches found
EUVD-2018-0042
Malware in sbrugna...
The vulnerability of the pngimage.cpp component in the Exiv2 metadata management library, which involves writing beyond buffer boundaries in memory, allows a attacker to cause a service failure.
The vulnerability of the pngimage.cpp component in the Exiv2 media metadata management library is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to cause a service failure...
PYSEC-2023-150
Buffer Overflow vulnerability in tEXtToDataBuf function in pngimage.cpp in Exiv2 0.27.1 allows remote attackers to cause a denial of service and other unspecified impacts via use of crafted file...
Buffer overflow
Buffer Overflow vulnerability in tEXtToDataBuf function in pngimage.cpp in Exiv2 0.27.1 allows remote attackers to cause a denial of service and other unspecified impacts via use of crafted file...
CVE-2020-18831
CVE-2020-18831 affects Exiv2, specifically the buffer overflow in the tEXtToDataBuf function within pngimage.cpp of version 0.27.1. The vulnerability can be triggered by processing crafted image files, leading to a denial of service and other unspecified impacts. The available connected documents...
CVE-2020-18831
Buffer Overflow vulnerability in tEXtToDataBuf function in pngimage.cpp in Exiv2 0.27.1 allows remote attackers to cause a denial of service and other unspecified impacts via use of crafted file...
Denial Of Service (DoS)
exiv2 is vulnerable to denial of service. The vulnerability exists in PngImage::readMetadata function of pngimage.cpp due to negative integer overflow which allows an attacker to crash the application via malicious input...
exiv2: OOB read in pngimage.cpp:tEXtToDataBuf() allows for crash via crafted file
The tEXtToDataBuf function in pngimage.cpp in Exiv2 through 0.26 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted file...
Denial Of Service (DoS)
libexiv2.so is vulnerable to denial of service DoS. An attacker can input a malicious PNG file to PngImage::readMetadata in pngimage.cpp to cause a heap-based buffer overflow which results in a denial of service condition...
CVE-2018-20096
There is a heap-based buffer over-read in the Exiv2::tEXtToDataBuf function of pngimage.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of service attack...
Heap overflow
There is a heap-based buffer over-read in the Exiv2::tEXtToDataBuf function of pngimage.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of service attack...
CVE-2018-20096
There is a heap-based buffer over-read in the Exiv2::tEXtToDataBuf function of pngimage.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of service attack...
CVE-2018-20096
There is a heap-based buffer over-read in the Exiv2::tEXtToDataBuf function of pngimage.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of service attack...
CVE-2018-20096
There is a heap-based buffer over-read in the Exiv2::tEXtToDataBuf function of pngimage.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of service attack...
PYSEC-2018-117
There is a heap-based buffer over-read in the Exiv2::tEXtToDataBuf function of pngimage.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of service attack...
CVE-2018-20096
CVE-2018-20096 describes a heap-based buffer over-read in Exiv2’s pngimage.cpp:Exiv2::tEXtToDataBuf() within version 0.27-RC3. A crafted input can cause a remote denial of service. The connected Nessus advisories enumerate Exiv2-related issues and explicitly list this CVE among many, reinforcing ...
CVE-2018-10772
The tEXtToDataBuf function in pngimage.cpp in Exiv2 through 0.26 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted file...
Denial Of Service (DoS)
libexiv2.so is vulnerable to denial of service DoS attacks. A malicious user can crash the applicaiton by passing a file to the tEXtToDataBuf function in pngimage.cpp...
CVE-2018-10772
The tEXtToDataBuf function in pngimage.cpp in Exiv2 through 0.26 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted file...
CVE-2018-10772
The tEXtToDataBuf function in pngimage.cpp in Exiv2 through 0.26 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted file...