The vulnerability of the exif_entry_get_value() function in the exif-entry.c component of the Libexif library for EXIF-file parsing allows a hacker to access confidential data and cause service interruptions. This vulnerability is related to reading beyond the allowed buffer size.

The vulnerability of the exifentrygetvalue function in the exif-entry.c component of the Libexif library for EXIF-file parsing involves reading data beyond the allowable buffer limits. Exploiting this vulnerability could allow an attacker to gain access to confidential data, as well as cause...

PYSEC-2024-106

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2 version v0.28.1. The vulnerable function, QuickTimeVideo::NikonTagsDecoder, was new in v0.28.0, so Exiv2 versions before v0.28 are no...

CVE-2024-24826 Out-of-bounds read in QuickTimeVideo::NikonTagsDecoder in Exiv2

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2 version v0.28.1. The vulnerable function, QuickTimeVideo::NikonTagsDecoder, was new in v0.28.0, so Exiv2 versions before v0.28 are no...

Exiv2 Exiv2::Image::printIFDStructure Denial of Service Vulnerability

Exiv2 is a set of C++ libraries and command line applications for managing image metadata by software developer Andreas Huggel, which provides fast and easy reading and writing of image metadata in a variety of EXIF, IPTC and XMP formats. A security vulnerability exists in the...