CVE-2018-18915 – exiv2: infinite loop in Exiv2::Image::printIFDStructure function in image.cpp
https://notcve.org/view.php?id=CVE-2018-18915
There is an infinite loop in the Exiv2::Image::printIFDStructure function of image.cpp in Exiv2 0.27-RC1. A crafted input will lead to a remote denial of service attack. Hay un bucle infinito en la función Exiv2::Image::printIFDStructure de image.cpp en Exiv2 0.27-RC1. Se podría realizar un ataque de denegación de servicio remoto con una entrada especialmente manipulada. • https://access.redhat.com/errata/RHSA-2019:2101 https://github.com/Exiv2/exiv2/issues/511 https://access.redhat.com/security/cve/CVE-2018-18915 https://bugzilla.redhat.com/show_bug.cgi?id=1646555 • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •
CVE-2018-17581 – exiv2: Stack overflow in CiffDirectory::readDirectory() at crwimage_int.cpp leading to denial of service
https://notcve.org/view.php?id=CVE-2018-17581
CiffDirectory::readDirectory() at crwimage_int.cpp in Exiv2 0.26 has excessive stack consumption due to a recursive function, leading to Denial of service. CiffDirectory::readDirectory() en crwimage_int.cpp en Exiv2 0.26 tiene un consumo excesivo de pila debido a una función recursiva, lo que conduce a una denegación de servicio (DoS). • https://access.redhat.com/errata/RHSA-2019:2101 https://github.com/Exiv2/exiv2/issues/460 https://github.com/SegfaultMasters/covering360/blob/master/Exiv2 https://lists.debian.org/debian-lts-announce/2019/02/msg00038.html https://lists.debian.org/debian-lts-announce/2023/01/msg00004.html https://usn.ubuntu.com/3852-1 https://access.redhat.com/security/cve/CVE-2018-17581 https://bugzilla.redhat.com/show_bug.cgi?id=1635045 • CWE-400: Uncontrolled Resource Consumption •
CVE-2018-17282 – exiv2: NULL pointer dereference in Exiv2::DataValue::copy in value.cpp leading to application crash
https://notcve.org/view.php?id=CVE-2018-17282
An issue was discovered in Exiv2 v0.26. The function Exiv2::DataValue::copy in value.cpp has a NULL pointer dereference. Se ha descubierto un problema en Exiv2 v0.26. La función Exiv2::DataValue::copy en value.cpp tiene una desreferencia de puntero NULL. • http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00009.html https://access.redhat.com/errata/RHSA-2019:2101 https://github.com/Exiv2/exiv2/issues/457 https://access.redhat.com/security/cve/CVE-2018-17282 https://bugzilla.redhat.com/show_bug.cgi?id=1632490 • CWE-476: NULL Pointer Dereference •
CVE-2018-17230 – exiv2: heap-based buffer overflow in Exiv2::ul2Data in types.cpp
https://notcve.org/view.php?id=CVE-2018-17230
Exiv2::ul2Data in types.cpp in Exiv2 v0.26 allows remote attackers to cause a denial of service (heap-based buffer overflow) via a crafted image file. Exiv2::ul2Data en types.cpp en Exiv2 v0.26 permite que atacantes remotos provoquen una denegación de servicio (desbordamiento de búfer basado en memoria dinámica) mediante un archivo de imagen manipulado. • http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00009.html https://github.com/Exiv2/exiv2/issues/455 https://access.redhat.com/security/cve/CVE-2018-17230 https://bugzilla.redhat.com/show_bug.cgi?id=1632484 • CWE-125: Out-of-bounds Read CWE-787: Out-of-bounds Write •
CVE-2018-17229 – exiv2: heap-based buffer overflow in Exiv2::d2Data in types.cpp
https://notcve.org/view.php?id=CVE-2018-17229
Exiv2::d2Data in types.cpp in Exiv2 v0.26 allows remote attackers to cause a denial of service (heap-based buffer overflow) via a crafted image file. Exiv2::d2Data en types.cpp en Exiv2 v0.26 permite que atacantes remotos provoquen una denegación de servicio (desbordamiento de búfer basado en memoria dinámica) mediante un archivo de imagen manipulado. • http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00009.html https://github.com/Exiv2/exiv2/issues/453 https://access.redhat.com/security/cve/CVE-2018-17229 https://bugzilla.redhat.com/show_bug.cgi?id=1632481 • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •