4 matches found
Astra Linux – Vulnerability in exiv2
Exiv2 0.27.2 allows attackers to cause a crash in the Exiv2::getULong function in types.cpp, when called from Exiv2::Internal::CiffDirectory::readDirectory in crwimageint.cpp. This occurs because there is no validation of the relationship between the total size and the offset and size...
CLSA-2025-1766136361 exiv2: Fix of CVE-2025-55304
CVE-2025-55304: add new method appendIccProfile to fix quadratic performance issue...
exiv2: uncontrolled memory allocation in PngChunk::parseChunkContent causing denial of service
A PngChunk::parseChunkContent uncontrolled memory allocation in Exiv2 through 0.27.1 allows an attacker to cause a denial of service crash due to an std::badalloc exception via a crafted PNG image file...
exiv2: Excessive memory allocation in Exiv2::Jp2Image::readMetadata function in jp2image.cpp
The Exiv2::Jp2Image::readMetadata function in jp2image.cpp in Exiv2 0.26 allows remote attackers to cause a denial of service excessive memory allocation via a crafted file...