15 matches found
EUVD-2018-20899
Malware in sbrugna...
Security update for exiv2 (moderate)
openSUSE Security Update: Security update for exiv2 Announcement ID: openSUSE-SU-2020:0482-1 Rating: moderate References: 1040973 1068873 1088424 1097599 1097600 1109175 1109176 1109299 1115364 1117513 1142684 Cross-References: CVE-2017-1000126 CVE-2017-9239 CVE-2018-12264 CVE-2018-12265...
NewStart CGSL CORE 5.04 / MAIN 5.04 : exiv2 Multiple Vulnerabilities (NS-SA-2019-0188)
The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has exiv2 packages installed that are affected by multiple vulnerabilities: - In Exiv2 0.26, an out-of-bounds read in IptcData::printStructure in iptc.c could result in a crash or information leak, related to the == 0x1c case...
Out-of-Bounds Read
exiv2 is vulnerable to out of bounds read. It is due to a flaw in IptcData::printStructure in iptc.c. which allows an attcker to crash the application via malicious input...
Denial Of Service (DoS)
libexiv2.so is vulnerable to denial of service. The Exiv2::IptcData::printStructure function in iptc.cpp related to the != 0x1c case, is affected with a heap-based over-read which would allow a remote attacker to cause a denial of service condition via a crafted TIFF file...
Exiv2 IptcData::printStructure Out-of-Bounds Read Vulnerability
Exiv2 is a C++ library for extracting EXIF, LPTC and XMP metadata information from images. An out-of-bounds read security vulnerability exists in Exiv2 version 0.26 iptc.c/IptcData::printStructure, which can be exploited by attackers to cause a crash or information disclosure...
CVE-2018-9305
In Exiv2 0.26, an out-of-bounds read in IptcData::printStructure in iptc.c could result in a crash or information leak, related to the "== 0x1c" case...
CVE-2018-9305
In Exiv2 0.26, an out-of-bounds read in IptcData::printStructure in iptc.c could result in a crash or information leak, related to the "== 0x1c" case...
Type confusion
In Exiv2 0.26, an out-of-bounds read in IptcData::printStructure in iptc.c could result in a crash or information leak, related to the "== 0x1c" case...
CVE-2018-9305
In Exiv2 0.26, an out-of-bounds read in IptcData::printStructure in iptc.c could result in a crash or information leak, related to the "== 0x1c" case...
CVE-2018-9305
In Exiv2 0.26, an out-of-bounds read in IptcData::printStructure in iptc.c could result in a crash or information leak, related to the "== 0x1c" case...
CVE-2018-9305
In Exiv2 0.26, an out-of-bounds read in IptcData::printStructure in iptc.c could result in a crash or information leak, related to the "== 0x1c" case...
CVE-2018-9305
CVE-2018-9305 : In Exiv2, there is an out-of-bounds read in IptcData::printStructure (iptc.c) that could cause a crash and potential information leak. Public advisories show the issue affecting Exiv2 prior to the 0.27.2 release, with fixes shipped in 0.27.2 (e.g., MiracleLinux 8/7 advisories, Alm...
CVE-2017-17724
In Exiv2 0.26, there is a heap-based buffer over-read in the Exiv2::IptcData::printStructure function in iptc.cpp, related to the "!= 0x1c" case. Remote attackers can exploit this vulnerability to cause a denial of service via a crafted TIFF file...
Heap overflow
In Exiv2 0.26, there is a heap-based buffer over-read in the Exiv2::IptcData::printStructure function in iptc.cpp, related to the "!= 0x1c" case. Remote attackers can exploit this vulnerability to cause a denial of service via a crafted TIFF file...