Exiv2 代码问题漏洞

Exiv2 is a cross-platform C++ library and command line utility for managing image metadata. A null pointer dereference vulnerability exists in Exiv2 0.27.4 and earlier versions. An attacker could exploit this vulnerability to cause a denial of service via a specially crafted image file...

PT-2021-8245 · Exiv2 +9 · Exiv2 +9

Name of the Vulnerable Software and Affected Versions: Exiv2 versions v0.27.3 and earlier Description: An out-of-bounds read was found in Exiv2 when used to write metadata into a crafted image file. This could potentially be exploited by an attacker to cause a denial of service by crashing Exiv2,...