2 matches found
kamadak-exif vulnerable to Infinite loop when parsing PNG files
Impact Reader::readfromcontainer can cause an infinite loop when a crafted PNG file is given. Patches Version 0.5.3 includes the fix. Workarounds No workaround is available. Applications that do not pass files with the PNG signature to Reader::readfromcontainer are not affected. References For mo...
Kamadak Exif-rs Resource Management Error Vulnerability
Kamadak Exif-rs is a Rust-based parsing library for analyzing Exif data by Kamadak's individual developers. It supports reading Exif data from TIFF, RAW, JPEG, HEIF, HEIC, AVIF, PNG, WebP and other formats. A security vulnerability exists in kamadak-exif version 0.5.2, which stems from an infinit...