2626 matches found
Astra Linux - уязвимость в exiv2
In Exiv2 versions 0.27.1, an uncontrolled memory allocation for PngChunk::parseChunkContent allows an attacker to cause a denial of service crash due to a std::badalloc exception through a crafted PNG image file...
Astra Linux - уязвимость в exiv2
In Exiv2 0.26, there is a null pointer dereference in the Exiv2::DataValue::toLong function located in value.cpp. This issue is related to crafted metadata in a TIFF file...
Astra Linux - уязвимость в exiv2
Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. A assertion failure occurs when Exiv2 is used to modify the metadata of a specially crafted image file. An attacker could potentially exploit this vulnerability to cause a...
Astra Linux - уязвимость в exiv2
There is a vulnerable assertion in the Internal::TiffReader::visitDirectory function in tiffvisitor.cpp of Exiv2 0.26, which can lead to a remote denial-of-service attack due to malicious input...
Astra Linux - уязвимость в exiv2
An invalid memory address dereferencing was discovered in Exiv2::getULong in types.cpp in Exiv2 0.26. This vulnerability causes a segmentation fault and results in the application crashing, leading to a denial of service...
Astra Linux - уязвимость в exiv2
There is a out-of-bounds read in the Exiv2::MrwImage::readMetadata method in mrwimage.cpp, within Exiv2 from version 0.27.2 onwards...
Astra Linux - уязвимость в exiv2
Exiv2 is a C++ library and command-line utility for reading, writing, deleting, and modifying image metadata in formats such as Exif, IPTC, XMP, and ICC. A buffer overflow vulnerability has been discovered in Exiv2 versions v0.27.3 and earlier. This vulnerability occurs when Exiv2 is used to writ...
Astra Linux - уязвимость в exiv2
In Exiv2, from version 0.27.1 onwards, a malicious HTTP server can cause a denial of service crash due to a NULL pointer dereference by returning a crafted response that lacks a space character...
Astra Linux - уязвимость в exiv2
An invalid memory address dereferencing was discovered in the Exiv2::DataValue::read method in value.cpp in Exiv2 0.26. This vulnerability causes a segmentation fault and an application crash, resulting in a denial of service...
Astra Linux - уязвимость в exiv2
An integer overflow in CrwMap::encode0x1810 of Exiv2 0.27.3 allows attackers to trigger a heap-based buffer overflow and cause a denial of service DOS by manipulating metadata...
Astra Linux - уязвимость в exiv2
Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An infinite loop is triggered when Exiv2 is used to read the metadata of a crafted image file. An attacker could potentially exploit this vulnerability to cause a denial of...
Astra Linux - уязвимость в exiv2
In Exiv2 0.26 and earlier versions, the PngChunk::readRawProfile method in pngchunkint.cpp may cause a denial of service application crashes due to a heap-based buffer overflow from reading a malicious PNG file...
Unity Linux 20.1060e / 20.1070e Security Update: exiv2 (UTSA-2026-017659)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017659 advisory. Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. A read of uninitialized memory was found ...
Unity Linux 20.1060e / 20.1070e Security Update: exiv2 (UTSA-2026-017410)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017410 advisory. A flaw was found in Exiv2 in versions before and including 0.27.4-RC1. Improper input validation of the rawData.size property in Jp2Image::readMetadata in jp2image.c...
Unity Linux 20.1060e / 20.1070e Security Update: exiv2 (UTSA-2026-017634)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017634 advisory. Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2...
Unity Linux 20.1060e / 20.1070e Security Update: exiv2 (UTSA-2026-017642)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017642 advisory. Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. A heap buffer overflow was found in Exiv2...
Unity Linux 20.1060e / 20.1070e Security Update: exiv2 (UTSA-2026-017657)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017657 advisory. Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An inefficient algorithm quadratic...
Unity Linux 20.1060e / 20.1070e Security Update: exiv2 (UTSA-2026-017639)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017639 advisory. Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2...
Unity Linux 20.1060e / 20.1070e Security Update: exiv2 (UTSA-2026-017625)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017625 advisory. Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. An out-of-bounds read was found in Exiv2...
Unity Linux 20.1060e / 20.1070e Security Update: exiv2 (UTSA-2026-017629)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017629 advisory. Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2...