Lucene search
K

55 matches found

Prion
Prion
added 2018/12/12 10:29 a.m.24 views

Design/Logic Flaw

There is an infinite loop in Exiv2::Jp2Image::encodeJp2Header of jp2image.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of service attack...

4.3CVSS7AI score0.02289EPSS
Exploits1References4Affected Software1
UbuntuCve
UbuntuCve
added 2018/12/12 10:29 a.m.28 views

CVE-2018-20098

There is a heap-based buffer over-read in Exiv2::Jp2Image::encodeJp2Header of jp2image.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of service attack...

6.5CVSS6.9AI score0.02567EPSS
Exploits1References2
OSV
OSV
added 2018/12/12 10:29 a.m.24 views

PYSEC-2018-120

There is an infinite loop in Exiv2::Jp2Image::encodeJp2Header of jp2image.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of service attack...

6.5CVSS6.3AI score0.02289EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2018/12/12 10:29 a.m.24 views

CVE-2018-20099

There is an infinite loop in Exiv2::Jp2Image::encodeJp2Header of jp2image.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of service attack...

6.5CVSS6.8AI score0.02289EPSS
Exploits1References3
Cvelist
Cvelist
added 2018/12/12 8:0 a.m.23 views

CVE-2018-20099

There is an infinite loop in Exiv2::Jp2Image::encodeJp2Header of jp2image.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of service attack...

6.4AI score0.02289EPSS
Exploits1References4
CVE
CVE
added 2018/12/12 8:0 a.m.151 views

CVE-2018-20099

CVE-2018-20099 affects Exiv2 with an infinite loop in Jp2Image::encodeJp2Header (jp2image.cpp) that can cause a denial of service when processing crafted input. Affected version: Exiv2 0.27-RC3. Connected documents confirm the exact function and vulnerability. No exploit details or fix version ar...

6.5CVSS6.2AI score0.02289EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2018/12/12 8:0 a.m.28 views

CVE-2018-20098

There is a heap-based buffer over-read in Exiv2::Jp2Image::encodeJp2Header of jp2image.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of service attack...

6.5AI score0.02567EPSS
Exploits1References4
Debian CVE
Debian CVE
added 2018/12/12 8:0 a.m.27 views

CVE-2018-20098

There is a heap-based buffer over-read in Exiv2::Jp2Image::encodeJp2Header of jp2image.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of service attack...

6.5CVSS6.9AI score0.02567EPSS
Exploits1
CNVD
CNVD
added 2018/05/14 12:0 a.m.4 views

Exiv2 'readMetadata' Function Denial of Service Vulnerability

Exiv2 is a set of C++ libraries and command line applications for managing image metadata by software developer Andreas Huggel, which provides for reading and writing image metadata in a variety of formats including EXIF, IPTC and XMP. A security vulnerability exists in the 'readMetadata' functio...

6.5CVSS6.9AI score0.02467EPSS
Exploits1References1
OSV
OSV
added 2018/05/12 12:0 a.m.6 views

UBUNTU-CVE-2018-10998

An issue was discovered in Exiv2 0.26. readMetadata in jp2image.cpp allows remote attackers to cause a denial of service SIGABRT by triggering an incorrect Safe::add call...

6.5CVSS6.8AI score0.02467EPSS
Exploits1References3
CNVD
CNVD
added 2018/01/05 12:0 a.m.2 views

Exiv2 'Exiv2::Jp2Image::readMetadata' function denial of service vulnerability

Exiv2 is a set of C++ libraries and command line applications for managing image metadata by software developer Andreas Huggel, which provides fast and easy reading and writing of image metadata in a variety of EXIF, IPTC and XMP formats. A security vulnerability exists in the...

5.5CVSS6.9AI score0.01488EPSS
Exploits1References1
Prion
Prion
added 2018/01/03 9:29 a.m.19 views

Design/Logic Flaw

The Exiv2::Jp2Image::readMetadata function in jp2image.cpp in Exiv2 0.26 allows remote attackers to cause a denial of service excessive memory allocation via a crafted file...

4.3CVSS6.3AI score0.01488EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2018/01/03 9:0 a.m.115 views

CVE-2018-4868

CVE-2018-4868 affects Exiv2 0.26: Exiv2::Jp2Image::readMetadata() can cause excessive memory allocation, enabling DoS via crafted files. The fix is to upgrade Exiv2 to later release (e.g., 0.27.2 as deployed in updated advisories, e.g., ALSA-2020:1577/RHSA-2020:1577). If upgrading is not possible...

5.5CVSS5.6AI score0.01488EPSS
Exploits1References2Affected Software1
RedhatCVE
RedhatCVE
added 2017/10/10 11:49 a.m.18 views

CVE-2017-14860

There is a heap-based buffer over-read in the Exiv2::Jp2Image::readMetadata function of jp2image.cpp in Exiv2 0.26. A Crafted input will lead to a denial of service attack...

5.5CVSS3.6AI score0.0083EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2017/09/29 1:34 a.m.19 views

CVE-2017-14860

There is a heap-based buffer over-read in the Exiv2::Jp2Image::readMetadata function of jp2image.cpp in Exiv2 0.26. A Crafted input will lead to a denial of service attack...

5.5CVSS7AI score0.0083EPSS
Exploits1References1
Rows per page
Query Builder