84 matches found
UBUNTU-CVE-2018-19567
A floating point exception in parsetiffifd in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code...
Exiv2 Infinite Loop Vulnerability
Exiv2 is a cross-platform C++ library and command line utility for managing image metadata. An infinite loop vulnerability in the Exiv2::Image::printIFDStructure function in image.cpp in Exiv2 0.27-RC1 can be exploited by an attacker to cause a denial of service via specially crafted input...
Exiv2 Denial of Service Vulnerability (CNVD-2018-03262)
Exiv2 is a set of C++ libraries and command line applications for managing image metadata by software developer Andreas Huggel, which provides fast and easy reading and writing of image metadata in a variety of EXIF, IPTC and XMP formats. A security vulnerability exists in the...
PYSEC-2017-118
There is a heap-based buffer over-read in the Image::printIFDStructure function in image.cpp in Exiv2 0.26. A Crafted input will lead to a remote denial of service attack...
Exiv2 'Image::printIFDStructure' heap buffer overflow vulnerability
Exiv2 is a cross-platform C++ library and command line utility for managing image metadata. The Image::printIFDStructure function in Exiv2's image.cpp suffers from a heap buffer overflow that allows an attacker to conduct a remote denial-of-service attack with specially designed inputs...
exiv2 'Image::printIFDStructure' Denial of Service Vulnerability
Exiv2 is a suite of C++ libraries and command line applications for managing image metadata, providing fast and easy reading and writing of image metadata in a wide range of EXIF, IPTC and XMP formats. The Image::printIFDStructure security vulnerability in Exiv2 version 0.26. A remote attacker ca...
PYSEC-2017-142
There is an invalid free in Image::printIFDStructure that leads to a Segmentation fault in Exiv2 0.26. A crafted input will lead to a remote denial of service attack...
PYSEC-2017-112
An issue was discovered in Exiv2 0.26. When the data structure of the structure ifd is incorrect, the program assigns pValue to 0x0, and the value of pValue is 0x0. TiffImageEntry::doWriteImage will use the value of pValue to cause a segmentation fault. To exploit this vulnerability, someone must...
PYSEC-2017-112
An issue was discovered in Exiv2 0.26. When the data structure of the structure ifd is incorrect, the program assigns pValue to 0x0, and the value of pValue is 0x0. TiffImageEntry::doWriteImage will use the value of pValue to cause a segmentation fault. To exploit this vulnerability, someone must...
DEBIAN-CVE-2017-9239
An issue was discovered in Exiv2 0.26. When the data structure of the structure ifd is incorrect, the program assigns pValue to 0x0, and the value of pValue is 0x0. TiffImageEntry::doWriteImage will use the value of pValue to cause a segmentation fault. To exploit this vulnerability, someone must...
UBUNTU-CVE-2017-9239
An issue was discovered in Exiv2 0.26. When the data structure of the structure ifd is incorrect, the program assigns pValue to 0x0, and the value of pValue is 0x0. TiffImageEntry::doWriteImage will use the value of pValue to cause a segmentation fault. To exploit this vulnerability, someone must...
DEBIAN-CVE-2017-6887
A boundary error within the "parsetiffifd" function internal/dcrawcommon.cpp in LibRaw versions before 0.18.2 can be exploited to cause a memory corruption via e.g. a specially crafted KDC file with model set to "DSLR-A100" and containing multiple sequences of 0x100 and 0x14A TAGs...
UBUNTU-CVE-2017-6886
An error within the "parsetiffifd" function internal/dcrawcommon.cpp in LibRaw versions before 0.18.2 can be exploited to corrupt memory...
UBUNTU-CVE-2017-6887
A boundary error within the "parsetiffifd" function internal/dcrawcommon.cpp in LibRaw versions before 0.18.2 can be exploited to cause a memory corruption via e.g. a specially crafted KDC file with model set to "DSLR-A100" and containing multiple sequences of 0x100 and 0x14A TAGs...
The vulnerability of the PHP interpreter, which allows attackers to trigger a service failure or exert other effects.
The vulnerability of the exifprocessIFDTag function ext/exif/exif.c in the PHP interpreter exists due to incorrect checking of arguments for the spprintf function. Exploiting this vulnerability can allow a malicious actor to trigger a service failure memory overflow or potentially cause other...
Out-of-bounds
The exifprocessIFDinJPEG function in ext/exif/exif.c in PHP before 5.5.35, 5.6.x before 5.6.21, and 7.x before 7.0.6 does not validate IFD sizes, which allows remote attackers to cause a denial of service out-of-bounds read or possibly have unspecified other impact via crafted header data...
UBUNTU-CVE-2016-4543
The exifprocessIFDinJPEG function in ext/exif/exif.c in PHP before 5.5.35, 5.6.x before 5.6.21, and 7.x before 7.0.6 does not validate IFD sizes, which allows remote attackers to cause a denial of service out-of-bounds read or possibly have unspecified other impact via crafted header data...
Internet Bug Bounty: Buffer over-read in exif_read_data with TIFF IFD tag
https://bugs.php.net/bug.php?id=70385...
UBUNTU-CVE-2014-3670
The exififdmakevalue function in exif.c in the EXIF extension in PHP before 5.4.34, 5.5.x before 5.5.18, and 5.6.x before 5.6.2 operates on floating-point arrays incorrectly, which allows remote attackers to cause a denial of service heap memory corruption and application crash or possibly execut...
Debian Security Advisory DSA 2427-1 (imagemagick - several vulnerabilities)
Two security vulnerabilities related to EXIF processing were discovered in ImageMagick, a suite of programs to manipulate images. CVE-2012-0247When parsing a maliciously crafted image with incorrect offset and count in the ResolutionUnit tag in EXIF IFD0, ImageMagick writes two bytes to an invali...