SUSE CVE-2018-14046

Exiv2 0.26 has a heap-based buffer over-read in WebPImage::decodeChunks in webpimage.cpp...

exiv2: integer overflow in WebPImage::decodeChunks leads to denial of service

A WebPImage::decodeChunks integer overflow in Exiv2 through 0.27.1 allows an attacker to cause a denial of service large heap allocation followed by a very long running loop via a crafted WEBP image file...

ALPINE-CVE-2019-13111

A WebPImage::decodeChunks integer overflow in Exiv2 through 0.27.1 allows an attacker to cause a denial of service large heap allocation followed by a very long running loop via a crafted WEBP image file...

PT-2019-13134 · Exiv2 +6 · Exiv2 +6

Name of the Vulnerable Software and Affected Versions: Exiv2 versions 0.27.1 and earlier Description: The issue is related to an integer overflow in the WebPImage::decodeChunks function, which can be triggered by a crafted WEBP image file. This can cause a denial of service due to a large heap...

PYSEC-2018-133

Exiv2 0.26 has a heap-based buffer over-read in WebPImage::decodeChunks in webpimage.cpp...

UBUNTU-CVE-2016-9807

The flxdecodechunks function in gst/flx/gstflxdec.c in GStreamer before 1.10.2 allows remote attackers to cause a denial of service invalid memory read and crash via a crafted FLIC file...