MiracleLinux 8 : compat-exiv2-026-0.26-7.el8 (AXSA:2022-3455:01)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2022-3455:01 advisory. exiv2: stack exhaustion issue in the printIFDStructure function may lead to DoS CVE-2020-18898 Tenable has extracted the preceding description block directly...

SUSE CVE-2017-12955

There is a heap-based buffer overflow in basicio.cpp of Exiv2 0.26. The vulnerability causes an out-of-bounds write in Exiv2::Image::printIFDStructure, which may lead to remote denial of service or possibly unspecified other impact...

SUSE CVE-2017-14863

A NULL pointer dereference was discovered in Exiv2::Image::printIFDStructure in image.cpp in Exiv2 0.26. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...

SUSE CVE-2018-5772

In Exiv2 0.26, there is a segmentation fault caused by uncontrolled recursion in the Exiv2::Image::printIFDStructure function in the image.cpp file. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted tif file...

Denial Of Service (DoS)

libexiv2.so is vulnerable to denial of service. The vulnerability exists due to a segmentation fault in the Image::printIFDStructure function in image.cpp which allows an attacker to crash the application via malicious tiff file...

compat-exiv2-026 security update

0.26-7 - Fix stack exhaustion issue in the printIFDStructure function Resolves: bz2003669...

exiv2: stack exhaustion issue in the printIFDStructure function may lead to DoS

The exiv2 program is susceptible to a stack exhaustion issue via a crafted file. The cause of this vulnerability, is due to a flaw in the code which could allow remote attackers to cause a denial of service DOS. The highest threat from this vulnerability is availability...

CentOS 8 : exiv2 (CESA-2022:1842)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2022:1842 advisory. - exiv2: stack exhaustion issue in the printIFDStructure function may lead to DoS CVE-2020-18898 Note that Nessus has not tested for this issue but has instead...

DEBIAN-CVE-2020-18898

A stack exhaustion issue in the printIFDStructure function of Exiv2 0.27 allows remote attackers to cause a denial of service DOS via a crafted file...

CVE-2020-18898

A stack exhaustion issue in the printIFDStructure function of Exiv2 0.27 allows remote attackers to cause a denial of service DOS via a crafted file...

PYSEC-2021-885

A stack exhaustion issue in the printIFDStructure function of Exiv2 0.27 allows remote attackers to cause a denial of service DOS via a crafted file...

CVE-2020-18898

A stack exhaustion issue in the printIFDStructure function of Exiv2 0.27 allows remote attackers to cause a denial of service DOS via a crafted file...

CVE-2020-18898

CVE-2020-18898 affects Exiv2. The connected sources describe a stack-exhaustion vulnerability in Exiv2’s printIFDStructure function that can be triggered by processing a crafted image/file, leading to a denial of service. Historical context in the documents shows this issue associated with Exiv2 ...

CVE-2020-18898

A stack exhaustion issue in the printIFDStructure function of Exiv2 0.27 allows remote attackers to cause a denial of service DOS via a crafted file...

Huawei EulerOS: Security Advisory for exiv2 (EulerOS-SA-2019-1784)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP5 : exiv2 (EulerOS-SA-2019-1804)

According to the versions of the exiv2 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Exiv2::isoSpeed in easyaccess.cpp in Exiv2 v0.27-RC2 allows remote attackers to cause a denial of service NULL pointer dereference and application...

PT-2019-6171 · Exiv2 +6 · Exiv2 +6

Name of the Vulnerable Software and Affected Versions: Exiv2 version 0.27 Description: The issue is related to a stack exhaustion problem in the printIFDStructure function of the Exiv2 library. This allows a remote attacker to cause a denial of service DOS by using a specially crafted file. The...

CVE-2018-18915

There is an infinite loop in the Exiv2::Image::printIFDStructure function of image.cpp in Exiv2 0.27-RC1. A crafted input will lead to a remote denial of service attack...

Denial Of Service (DoS)

libexiv2.so is vulnerable to denial of service attacks. The vulnerability exists due to an infinite loop that could occur in the printIFDStructure function of image.cpp which allows an attacker to crash the application...

PYSEC-2018-140

There is an infinite loop in the Exiv2::Image::printIFDStructure function of image.cpp in Exiv2 0.27-RC1. A crafted input will lead to a remote denial of service attack...