libexiv2.so is vulnerable to denial of service (DoS) attacks. The vulnerability exists through an invalid memory dereference bug in Evix2::DataValue::read
of value.cpp
that causes a denial of service (DoS) attack when parsing a malicious exif
.
CPE | Name | Operator | Version |
---|---|---|---|
libexiv2.so | le | 14.0.0 | |
libexiv2.so | le | 14.0.0 | |
exiv2:buster | eq | 0.25-4+deb10u1 |