libexiv2.so is vulnerable to heap-based buffer overflows. The vulnerability exists in the decodeBlock
function of quicktimevideo.cpp
due to improper handling of buffer size which allows an attacker to cause overflows resulting in an application crash.
CPE | Name | Operator | Version |
---|---|---|---|
libexiv2.so | le | 26.0.0 | |
libexiv2.so | le | 0.27.5 | |
libexiv2.so | le | 26.0.0 | |
libexiv2.so | le | 0.27.5 |