exiv2: integer overflow in getData function in preview.cpp

Exiv2 0.26 has integer overflows in LoaderTiff::getData in preview.cpp, leading to an out-of-bounds read in Exiv2::ValueType::setDataArea in value.hpp...

EulerOS 2.0 SP2 : exiv2 (EulerOS-SA-2018-1286)

According to the versions of the exiv2 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Exiv2 0.26 has an integer overflow in the LoaderExifJpeg class in preview.cpp, leading to an out-of-bounds read in Exiv2::MemIo::read in...

Denial Of Service (DoS)

libexiv2.so is vulnerable to denial of service DoS. The attacker can trigger the attacker by sending a malicious LoaderTiff::getData in preview.cpp, causing an out-of-bounds read in Exiv2::ValueType::setDataArea in value.hpp...

Integer overflow

Exiv2 0.26 has integer overflows in LoaderTiff::getData in preview.cpp, leading to an out-of-bounds read in Exiv2::ValueType::setDataArea in value.hpp...

CVE-2018-12264

Exiv2 0.26 has integer overflows in LoaderTiff::getData in preview.cpp, leading to an out-of-bounds read in Exiv2::ValueType::setDataArea in value.hpp...