exiv2: stack exhaustion issue in the printIFDStructure function may lead to DoS

The exiv2 program is susceptible to a stack exhaustion issue via a crafted file. The cause of this vulnerability, is due to a flaw in the code which could allow remote attackers to cause a denial of service DOS. The highest threat from this vulnerability is availability...

PYSEC-2019-249

An issue was discovered in Exiv2 0.27. There is infinite recursion at BigTiffImage::printIFD in the file bigtiffimage.cpp. This can be triggered by a crafted file. It allows an attacker to cause Denial of Service Segmentation fault or possibly have unspecified other impact...

Exiv2 Infinite Loop Vulnerability

Exiv2 is a cross-platform C++ library and command line utility for managing image metadata. An infinite loop vulnerability in the Exiv2::Image::printIFDStructure function in image.cpp in Exiv2 0.27-RC1 can be exploited by an attacker to cause a denial of service via specially crafted input...

Exiv2 Denial of Service Vulnerability (CNVD-2018-03262)

Exiv2 is a set of C++ libraries and command line applications for managing image metadata by software developer Andreas Huggel, which provides fast and easy reading and writing of image metadata in a variety of EXIF, IPTC and XMP formats. A security vulnerability exists in the...

exiv2 'Image::printIFDStructure' Denial of Service Vulnerability

Exiv2 is a suite of C++ libraries and command line applications for managing image metadata, providing fast and easy reading and writing of image metadata in a wide range of EXIF, IPTC and XMP formats. The Image::printIFDStructure security vulnerability in Exiv2 version 0.26. A remote attacker ca...