Astra Linux - уязвимость в exiv2

In Exiv2 0.26 and earlier versions, the PngChunk::readRawProfile method in pngchunkint.cpp may cause a denial of service application crashes due to a heap-based buffer overflow from reading a malicious PNG file...

SUSE CVE-2018-19535

In Exiv2 0.26 and previous versions, PngChunk::readRawProfile in pngchunkint.cpp may cause a denial of service application crash due to a heap-based buffer over-read via a crafted PNG file...

exiv2: heap-based buffer over-read in PngChunk::readRawProfile in pngchunk_int.cpp

In Exiv2 0.26 and previous versions, PngChunk::readRawProfile in pngchunkint.cpp may cause a denial of service application crash due to a heap-based buffer over-read via a crafted PNG file...

Denial Of Service (DoS)

exiv2 is vulnerable to heap-based buffer over-read. It is due to a flaw in PngChunk::readRawProfile in pngchunkint.cpp...

CVE-2018-19535

In Exiv2 0.26 and previous versions, PngChunk::readRawProfile in pngchunkint.cpp may cause a denial of service application crash due to a heap-based buffer over-read via a crafted PNG file...

Exiv2 Denial of Service Vulnerability (CNVD-2019-00239)

Exiv2 is a set of C++ libraries and command line applications for managing image metadata by software developer Andreas Huggel, which provides for reading and writing image metadata in a variety of formats including EXIF, IPTC and XMP. A security vulnerability exists in the...

CVE-2018-19535

In Exiv2 0.26 and previous versions, PngChunk::readRawProfile in pngchunkint.cpp may cause a denial of service application crash due to a heap-based buffer over-read via a crafted PNG file...

PT-2018-3636 · Exiv2 +8 · Exiv2 +8

Name of the Vulnerable Software and Affected Versions: Exiv2 versions 0.26 and earlier Description: The issue is related to the incorrect handling of PNG files by the PngChunk::readRawProfile function in the Exiv2 library for managing media file metadata. This can be exploited by a remote attacke...