22 matches found
SUSE CVE-2018-11531
Exiv2 0.26 has a heap-based buffer overflow in getData in preview.cpp...
EulerOS 2.0 SP3 : exiv2 (EulerOS-SA-2021-1782)
According to the versions of the exiv2 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Exiv2 0.26 has a heap-based buffer overflow in getData in preview.cpp.CVE-2018-11531 - Exiv2 0.27.2 allows attackers to trigger a crash in...
exiv2: integer overflow in getData function in preview.cpp
Exiv2 0.26 has integer overflows in LoaderTiff::getData in preview.cpp, leading to an out-of-bounds read in Exiv2::ValueType::setDataArea in value.hpp...
EulerOS 2.0 SP2 : exiv2 (EulerOS-SA-2018-1286)
According to the versions of the exiv2 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Exiv2 0.26 has an integer overflow in the LoaderExifJpeg class in preview.cpp, leading to an out-of-bounds read in Exiv2::MemIo::read in...
Denial Of Service (DoS) Through Out-of-Bounds Read
libexiv2.so is vulnerable to denial of service through out-of-bounds read attacks. The vulnerability exists in an out-of-bounds read in Exiv2::MemIo::read of basicio.cpp caused by an integer overflow issue if LoaderExifJpeg of preview.cpp, causing a DoS attack...
Exiv2 Integer Overflow Vulnerability
Exiv2 is a set of C++ libraries and command line applications for managing image metadata by software developer Andreas Huggel, which provides for reading and writing image metadata in a variety of formats including EXIF, IPTC and XMP. An integer overflow vulnerability exists in the...
CVE-2018-12265
Exiv2 0.26 has an integer overflow in the LoaderExifJpeg class in preview.cpp, leading to an out-of-bounds read in Exiv2::MemIo::read in basicio.cpp...
Integer overflow
Exiv2 0.26 has integer overflows in LoaderTiff::getData in preview.cpp, leading to an out-of-bounds read in Exiv2::ValueType::setDataArea in value.hpp...
CVE-2018-12265
CVE-2018-12265 affects Exiv2 0.26. The issue is an integer overflow in LoaderExifJpeg (preview.cpp) that can cause an out-of-bounds read in Exiv2::MemIo::read (basico.cpp). This is described across multiple advisories as a memory corruption/denial risk vector in the Exiv2 0.26 release. Connected ...
CVE-2018-12264
Exiv2 0.26 contains an integer overflow in LoaderTiff::getData() (preview.cpp), leading to an out-of-bounds read in Exiv2::ValueType::setDataArea (value.hpp). Exploitation could cause crashes or memory corruption. The vulnerability is addressed in later Exiv2 revisions (e.g., upgrade to the 0.27....
CVE-2018-12264
Exiv2 0.26 has integer overflows in LoaderTiff::getData in preview.cpp, leading to an out-of-bounds read in Exiv2::ValueType::setDataArea in value.hpp...
CVE-2018-11531
Exiv2 0.26 has a heap-based buffer overflow in getData in preview.cpp...
Buffer Overflow
libexiv2.so is vulnerable to buffer overflows. A malicious user can pass a jpg file to the LoaderTiff::getData function in preview.cpp to cause a buffer overflow that can crash the application or execute arbitrary code...
Heap overflow
Exiv2 0.26 has a heap-based buffer overflow in getData in preview.cpp...
CVE-2018-11531
Exiv2 0.26 has a heap-based buffer overflow in getData in preview.cpp...
PYSEC-2018-130
Exiv2 0.26 has a heap-based buffer overflow in getData in preview.cpp...
CVE-2018-11531
Exiv2 0.26 has a heap-based buffer overflow in getData in preview.cpp...
CVE-2018-11531
CVE-2018-11531 affects Exiv2 0.26 and is described as a heap-based buffer overflow in Exiv2’s getData implemented in preview.cpp. The entry lists CVSS: v2 base 7.5 (HIGH) and CVSS:3.0 base 9.8 (CRITICAL) with NETWORK attack, no authentication/UI. The provided documents do not specify a patch vers...
CVE-2018-11531
Exiv2 0.26 has a heap-based buffer overflow in getData in preview.cpp...
CVE-2018-11531
Exiv2 0.26 has a heap-based buffer overflow in getData in preview.cpp...