26 matches found
CVE-2018-9305
In Exiv2 0.26, an out-of-bounds read in IptcData::printStructure in iptc.c could result in a crash or information leak, related to the "== 0x1c" case...
CVE-2018-9305
CVE-2018-9305 : In Exiv2, there is an out-of-bounds read in IptcData::printStructure (iptc.c) that could cause a crash and potential information leak. Public advisories show the issue affecting Exiv2 prior to the 0.27.2 release, with fixes shipped in 0.27.2 (e.g., MiracleLinux 8/7 advisories, Alm...
CVE-2018-9305
In Exiv2 0.26, an out-of-bounds read in IptcData::printStructure in iptc.c could result in a crash or information leak, related to the "== 0x1c" case...
Exiv2 'Exiv2::IptcData::printStructure' function out-of-bounds read vulnerability
Exiv2 is a set of C++ libraries and command line applications for managing image metadata by software developer Andreas Huggel, which provides fast and easy reading and writing of image metadata in a variety of EXIF, IPTC and XMP formats. An out-of-bounds read vulnerability exists in the...
Heap overflow
In Exiv2 0.26, there is a heap-based buffer over-read in the Exiv2::IptcData::printStructure function in iptc.cpp, related to the "!= 0x1c" case. Remote attackers can exploit this vulnerability to cause a denial of service via a crafted TIFF file...
CVE-2017-17724
In Exiv2 0.26, there is a heap-based buffer over-read in the Exiv2::IptcData::printStructure function in iptc.cpp, related to the "!= 0x1c" case. Remote attackers can exploit this vulnerability to cause a denial of service via a crafted TIFF file...