EPSS
Percentile
60.0%
libexiv2.so is vulnerable to denial of service (DoS) through heap-based buffer overflow. The vulnerability exists in Image::printIFDStructure of mage.cpp where a heap-based buffer overflow could occur, causing the DoS.
Image::printIFDStructure
mage.cpp
bugzilla.redhat.com/show_bug.cgi?id=1470946
github.com/Exiv2/exiv2/commit/272fc46502b7b0911b1e1157ea9be3e06b55fc93
github.com/Exiv2/exiv2/issues/52
github.com/Exiv2/exiv2/pull/79