SUSE CVE-2017-14863

A NULL pointer dereference was discovered in Exiv2::Image::printIFDStructure in image.cpp in Exiv2 0.26. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...

SUSE CVE-2018-9144

In Exiv2 0.26, there is an out-of-bounds read in Exiv2::Internal::binaryToString in image.cpp. It could result in denial of service or information disclosure...

exiv2: infinite recursion in Exiv2::Image::printTiffStructure in file image.cpp resulting in denial of service

An issue was discovered in Exiv2 0.27. There is infinite recursion at Exiv2::Image::printTiffStructure in the file image.cpp. This can be triggered by a crafted file. It allows an attacker to cause Denial of Service Segmentation fault or possibly have unspecified other impact...

EulerOS 2.0 SP5 : exiv2 (EulerOS-SA-2019-1804)

According to the versions of the exiv2 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Exiv2::isoSpeed in easyaccess.cpp in Exiv2 v0.27-RC2 allows remote attackers to cause a denial of service NULL pointer dereference and application...

Denial Of Service (DoS)

exiv2 is vulnerable to denial of service. The vulnerability exists due to a flaw in Exiv2::Internal::stringFormat in image.cpp which allows an attacker to crash the application via malicious input...

CVE-2019-9143

CVE-2019-9143 involves an infinite recursion in Exiv2’s Image::printTiffStructure (image.cpp) that can be triggered by a crafted TIFF-related file, potentially causing a Denial of Service via segmentation fault or similar impact. Connected advisories and vulnerability listings show this issue wit...

Denial Of Service (DoS)

libexiv2.so is vulnerable to denial of service attacks. The vulnerability exists due to an infinite loop that could occur in the printIFDStructure function of image.cpp which allows an attacker to crash the application...

PYSEC-2018-140

There is an infinite loop in the Exiv2::Image::printIFDStructure function of image.cpp in Exiv2 0.27-RC1. A crafted input will lead to a remote denial of service attack...

CVE-2018-18915

There is an infinite loop in the Exiv2::Image::printIFDStructure function of image.cpp in Exiv2 0.27-RC1. A crafted input will lead to a remote denial of service attack...

Stack overflow

An issue was discovered in cmft through 2017-09-24. The cmft::rwReadFile function in image.cpp allows remote attackers to cause a denial of service stack-based buffer overflow and application crash or possibly have unspecified other impact...

CVE-2018-13833

An issue was discovered in cmft through 2017-09-24. The cmft::rwReadFile function in image.cpp allows remote attackers to cause a denial of service stack-based buffer overflow and application crash or possibly have unspecified other impact...

CVE-2018-13833

CVE-2018-13833 affects the cmft project. The vulnerability is in the function cmft::rwReadFile in the file image.cpp and causes a stack-based buffer overflow that can lead to a denial of service and a potential other impact. Affected versions are up to 2017-09-24. Documents do not specify exploit...

Denial Of Service (DoS)

libexiv2.so is vulnerable to denial of service DoS attacks. A malicious user can pass an image to the Exiv2::Image::io function in image.cpp to cause a buffer overread that can crash the application...

Denial Of Service (DoS) Through Infinite Loop

libexiv2.so is vulnerable to denial of service DoS through infinite loop. The vulnerability exists in Exiv2::Image::printIFDStructure of image.cpp where an infinite loop could occur, causing the DoS...

Denial Of Service (DoS) Through Heap Buffer Overflow

libexiv2.so is vulnerable to denial of service DoS through heap-based buffer overflow attacks. The vulnerability exists in the Image::printIFDStructure function of image.cpp where a DoS could occur when processing a malicious file...

Denial Of Service (DoS)

libexiv2.so is vulnerable to denial of service DoS attacks. The vulnerability exists through an invalid free issue in image.cpp which causes the DoS attack...

CVE-2018-10780

Exiv2::Image::byteSwap2 in image.cpp in Exiv2 0.26 has a heap-based buffer over-read...

Heap-Based Buffer Over-read

libexiv2.so is susceptible to heap-based buffer over-read. A flaw in the byteSwap2 function in image.cpp causes the application to crash...

CVE-2018-10780

Exiv2::Image::byteSwap2 in image.cpp in Exiv2 0.26 has a heap-based buffer over-read...

CVE-2018-10780

CVE-2018-10780 affects Exiv2 up to 0.26, causing a heap-based buffer over-read in Image::byteSwap2 (image.cpp). Connected PT Security entries describe additional Exiv2 issues across older branches (0.27.1 and earlier; also 0.26 and earlier) tied to PNG/CRW handling, PngChunk/parseChunkContent, Pn...