Linux Distros Unpatched Vulnerability : CVE-2014-9449

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer overflow in the RiffVideo::infoTagsHandler function in riffvideo.cpp in Exiv2 0.24 allows remote attackers to cause a denial of service crash via a long...

RHEL 6 : exiv2 (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - exiv2: integer overflow in the LoaderExifJpeg class in preview.cpp CVE-2018-12265 - Buffer overflow in th...

Gentoo Security Advisory GLSA 201507-03

Gentoo Linux Local Security Checks GLSA 201507-03 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...

CVE-2014-9449

CVE-2014-9449: Exiv2 contains a buffer overflow in RiffVideo::infoTagsHandler (riffvideo.cpp) that can cause a remote DoS/crash via a long IKEY INFO tag in AVI files. Public advisories across distros reference Exiv2 0.24 as vulnerable; remediation involves upgrading to a newer Exiv2 package (e.g....