15 matches found
EUVD-2020-1686
Malware in sbrugna...
libexif: out of bounds write due to an integer overflow in exif-entry.c
A flaw was found in libexif. A possible out of bounds write, due ot an integer overflow, could lead to a remote code execution if a third party app used this library to process remote image data. The highest threat from this vulnerability is to data confidentiality and integrity as well as system...
CVE-2020-0452
In exifentrygetvalue of exif-entry.c, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution if a third party app used this library to process remote image data with no additional execution privileges needed. User interaction is not needed for...
CVE-2020-0452
CVE-2020-0452 affects libexif; the issue is an out-of-bounds write caused by an integer overflow in exif-entry.c, potentially enabling remote code execution when processing remote image data. Multiple connected advisories (CentOS RHSA-2020:5402, ALSA-2020:5393 for AlmaLinux, Amazon Linux ALAS2-20...
CVE-2020-0452
In exifentrygetvalue of exif-entry.c, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution if a third party app used this library to process remote image data with no additional execution privileges needed. User interaction is not needed for...
Divide-by-zero Error
The libexif has divide-by-zero error in exifentrygetvalue function in exif-entry.c...
Information Disclosure
libexif is vulnerable to information disclosure. An out-of-bounds read due to a missing bounds check in exifentrygetvalue function in exif-entry.c allows an attacker to obtain confidential information from memory and a potentially crash the application...
libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c
exifentrygetvalue in exif-entry.c in libexif 0.6.21 has a divide-by-zero error...
CVE-2020-12767
exifentrygetvalue in exif-entry.c in libexif 0.6.21 has a divide-by-zero error...
CVE-2020-12767
exifentrygetvalue in exif-entry.c in libexif 0.6.21 has a divide-by-zero error...
Denial Of Service (DoS)
libexif is vulnerable to denial of service. The exifentrygetvalue function in exif-entry.c does not properly process Exif tags, allowing a remote attacker to crash the process or obtain confidential information in an out-of-bounds read via a malicious EXIF tag in an image...
DEBIAN-CVE-2012-2840
Off-by-one error in the exifconvertutf16toutf8 function in exif-entry.c in the EXIF Tag Parsing Library aka libexif before 0.6.21 allows remote attackers to cause a denial of service or possibly execute arbitrary code via crafted EXIF tags in an image...
CVE-2012-2841
Integer underflow in the exifentrygetvalue function in exif-entry.c in the EXIF Tag Parsing Library aka libexif 0.6.20 might allow remote attackers to execute arbitrary code via vectors involving a crafted buffer-size parameter during the formatting of an EXIF tag, leading to a heap-based buffer...
CVE-2012-2841
The CVE-2012-2841 issue is an integer underflow in libexif’s exif_entry_get_value function that can cause a heap overflow and potentially arbitrary code execution when formatting an EXIF tag. Affected versions include libexif 0.6.20 (and related 0.6.x) across multiple distributions. Public adviso...
libexif库exif-entry.c标签格式转换堆溢出漏洞
BUGTRAQ ID: 37022 libexif是用C编写的函数库,用于从图形文件中读写EXIF元信息。 libexif库的libexif/libexif/exif-entry.c文件中的exifentryfix函数在将8位整数数组转换为16位整数时存在堆溢出漏洞,用户受骗打开了畸形的EXIF图形就可以触发这个溢出,导致使用该库的应用程序崩溃或执行任意代码。 libexif 0.6.18 厂商补丁: libexif ------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...