14 matches found
EUVD-2022-7148
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2021-21235
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - kamadak-exif is an exif parsing library written in pure Rust. In kamadak-exif version 0.5.2, there is an infinite loop in parsing crafted PNG files. Specificall...
CVE-2021-21235
kamadak-exif is an exif parsing library written in pure Rust. In kamadak-exif version 0.5.2, there is an infinite loop in parsing crafted PNG files. Specifically, reader::readfromcontainer can cause an infinite loop when a crafted PNG file is given. This is fixed in version 0.5.3. No workaround i...
GHSA-PX9G-8HGV-JVG2 kamadak-exif vulnerable to Infinite loop when parsing PNG files
Impact Reader::readfromcontainer can cause an infinite loop when a crafted PNG file is given. Patches Version 0.5.3 includes the fix. Workarounds No workaround is available. Applications that do not pass files with the PNG signature to Reader::readfromcontainer are not affected. References For mo...
CVE-2021-21235
kamadak-exif is an exif parsing library written in pure Rust. In kamadak-exif version 0.5.2, there is an infinite loop in parsing crafted PNG files. Specifically, reader::readfromcontainer can cause an infinite loop when a crafted PNG file is given. This is fixed in version 0.5.3. No workaround i...
CVE-2021-21235
kamadak-exif is an exif parsing library written in pure Rust. In kamadak-exif version 0.5.2, there is an infinite loop in parsing crafted PNG files. Specifically, reader::readfromcontainer can cause an infinite loop when a crafted PNG file is given. This is fixed in version 0.5.3. No workaround i...
CVE-2021-21235
kamadak-exif is an exif parsing library written in pure Rust. In kamadak-exif version 0.5.2, there is an infinite loop in parsing crafted PNG files. Specifically, reader::readfromcontainer can cause an infinite loop when a crafted PNG file is given. This is fixed in version 0.5.3. No workaround i...
UBUNTU-CVE-2021-21235
kamadak-exif is an exif parsing library written in pure Rust. In kamadak-exif version 0.5.2, there is an infinite loop in parsing crafted PNG files. Specifically, reader::readfromcontainer can cause an infinite loop when a crafted PNG file is given. This is fixed in version 0.5.3. No workaround i...
CVE-2021-21235 Infinite loop in parsing PNG files in
kamadak-exif is an exif parsing library written in pure Rust. In kamadak-exif version 0.5.2, there is an infinite loop in parsing crafted PNG files. Specifically, reader::readfromcontainer can cause an infinite loop when a crafted PNG file is given. This is fixed in version 0.5.3. No workaround i...
CVE-2021-21235
Summary (CVE-2021-21235): kamadak-exif (Rust) v0.5.2 contains an infinite loop in PNG parsing via reader::read_from_container when given crafted PNG files. The issue is fixed in v0.5.3; upgrade to 0.5.3 to mitigate. Applications that do not pass PNG-signature files to Reader::read_from_container ...
CVE-2021-21235
kamadak-exif is an exif parsing library written in pure Rust. In kamadak-exif version 0.5.2, there is an infinite loop in parsing crafted PNG files. Specifically, reader::readfromcontainer can cause an infinite loop when a crafted PNG file is given. This is fixed in version 0.5.3. No workaround i...
Kamadak Exif-rs Resource Management Error Vulnerability
Kamadak Exif-rs is a Rust-based parsing library for analyzing Exif data by Kamadak's individual developers. It supports reading Exif data from TIFF, RAW, JPEG, HEIF, HEIC, AVIF, PNG, WebP and other formats. A security vulnerability exists in kamadak-exif version 0.5.2, which stems from an infinit...
RUSTSEC-2021-0143 kamadak-exif DoS with untrusted PNG data
Attacker crafted data can cause a infinite loop leading to DoS if used with untrusted data...
kamadak-exif DoS with untrusted PNG data
Attacker crafted data can cause a infinite loop leading to DoS if used with untrusted data...