Lucene search
K

4 matches found

PyPA
PyPA
added 2023/08/22 7:15 p.m.9 views

PYSEC-2023-150

Buffer Overflow vulnerability in tEXtToDataBuf function in pngimage.cpp in Exiv2 0.27.1 allows remote attackers to cause a denial of service and other unspecified impacts via use of crafted file...

7.8CVSS7AI score0.00697EPSS
Exploits1References5Affected Software1
RedHat Linux
RedHat Linux
added 2020/04/28 3:31 p.m.7 views

exiv2: Heap-based buffer over-read in Exiv2::tEXtToDataBuf function resulting in a denial of service

There is a heap-based buffer over-read in the Exiv2::tEXtToDataBuf function of pngimage.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of service attack...

6.5CVSS6AI score0.02762EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2019/08/06 2:22 p.m.5 views

exiv2: Heap-based buffer over-read in Exiv2::tEXtToDataBuf function resulting in a denial of service

There is a heap-based buffer over-read in the Exiv2::tEXtToDataBuf function of pngimage.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of service attack...

6.5CVSS6AI score0.02762EPSS
Exploits1References4
CNVD
CNVD
added 2018/12/13 12:0 a.m.2 views

Exiv2 Buffer Overflow Vulnerability (CNVD-2019-07082)

Exiv2 is a cross-platform C++ library and command line utility for managing image metadata. A heap buffer overflow vulnerability exists in the Exiv2::tEXtToDataBuf function in pngimage.cpp in Exiv2 0.27-RC3, which can be exploited by a remote attacker via specially crafted input to cause a denial...

6.5CVSS8.9AI score0.02762EPSS
Exploits1References1
Rows per page
Query Builder