CVSS: 8.1EPSS: 0%CPEs: 1EXPL: 2CVE-2018-9305 – exiv2: out of bounds read in IptcData::printStructure in iptc.c
https://notcve.org/view.php?id=CVE-2018-9305
04 Apr 2018 — In Exiv2 0.26, an out-of-bounds read in IptcData::printStructure in iptc.c could result in a crash or information leak, related to the "== 0x1c" case. En Exiv2 0.26, una lectura fuera de límites en IptcData::printStructure en iptc.c podría resultar en un cierre inesperado o una fuga de información. Esto está relacionado con el caso "== 0x1c". An out-of-bounds read vulnerability has been discovered in IptcData::printStructure in iptc.cpp file of Exiv2 0.26. An attacker could cause a crash or an information l... • http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00009.html • CWE-125: Out-of-bounds Read •
CVSS: 8.1EPSS: 0%CPEs: 1EXPL: 2CVE-2018-9144 – Gentoo Linux Security Advisory 201811-14
https://notcve.org/view.php?id=CVE-2018-9144
30 Mar 2018 — In Exiv2 0.26, there is an out-of-bounds read in Exiv2::Internal::binaryToString in image.cpp. It could result in denial of service or information disclosure. En Exiv2 0.26, existe una lectura fuera de límites en Exiv2::Internal::binaryToString en image.cpp. Esto podría resultar en una denegación de servicio (DoS) o divulgación de información. Multiple vulnerabilities have been found in Exiv2, the worst of which could result in a Denial of Service condition. • https://github.com/Exiv2/exiv2/issues/254 • CWE-125: Out-of-bounds Read •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2018-9145 – Gentoo Linux Security Advisory 201811-14
https://notcve.org/view.php?id=CVE-2018-9145
30 Mar 2018 — In the DataBuf class in include/exiv2/types.hpp in Exiv2 0.26, an issue exists in the constructor with an initial buffer size. A large size value may lead to a SIGABRT during an attempt at memory allocation. NOTE: some third parties have been unable to reproduce the SIGABRT when using the 4-DataBuf-abort-1 PoC file. En la clase DataBuf en include/exiv2/types.hpp en Exiv2 0.26, existe un problema en el constructor con un tamaño de búfer inicial. Un valor de tamaño grande puede desembocar en un SIGABRT durant... • https://bugzilla.novell.com/show_bug.cgi?id=1087879 • CWE-20: Improper Input Validation •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2018-8977 – exiv2: invalid memory access in Exiv2::Internal::printCsLensFFFF function in canonmn_int.cpp
https://notcve.org/view.php?id=CVE-2018-8977
25 Mar 2018 — In Exiv2 0.26, the Exiv2::Internal::printCsLensFFFF function in canonmn_int.cpp allows remote attackers to cause a denial of service (invalid memory access) via a crafted file. La función Exiv2::Internal::printCsLensFFFF en canonmn_int.cpp en Exiv2 0.26 permite que atacantes remotos provoquen una denegación de servicio (acceso a memoria no válido) mediante un archivo manipulado. The exiv2 packages provide a command line utility which can display and manipulate image metadata such as EXIF, LPTC, and JPEG com... • https://access.redhat.com/errata/RHSA-2019:2101 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 1CVE-2018-8976 – exiv2: out-of-bounds read in Exiv2::Internal::stringFormat image.cpp
https://notcve.org/view.php?id=CVE-2018-8976
25 Mar 2018 — In Exiv2 0.26, jpgimage.cpp allows remote attackers to cause a denial of service (image.cpp Exiv2::Internal::stringFormat out-of-bounds read) via a crafted file. En Exiv2 0.26, jpgimage.cpp permite que atacantes remotos provoquen una denegación de servicio (lectura fuera de límites de Exiv2::Internal::stringFormat en image.cpp) mediante un archivo manipulado. The exiv2 packages provide a command line utility which can display and manipulate image metadata such as EXIF, LPTC, and JPEG comments. Issues addres... • https://access.redhat.com/errata/RHSA-2019:2101 • CWE-125: Out-of-bounds Read •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2017-17722
https://notcve.org/view.php?id=CVE-2017-17722
12 Feb 2018 — In Exiv2 0.26, there is a reachable assertion in the readHeader function in bigtiffimage.cpp, which will lead to a remote denial of service attack via a crafted TIFF file. En Exiv2 0.26, hay una aserción alcanzable en la función readHeader en bigtiffimage.cpp, que conducirá a un ataque de denegación de servicio (DoS) remoto mediante un archivo TIFF manipulado. • https://bugzilla.redhat.com/show_bug.cgi?id=1524116 • CWE-617: Reachable Assertion •
CVSS: 8.1EPSS: 0%CPEs: 1EXPL: 1CVE-2017-17723 – Gentoo Linux Security Advisory 201811-14
https://notcve.org/view.php?id=CVE-2017-17723
12 Feb 2018 — In Exiv2 0.26, there is a heap-based buffer over-read in the Exiv2::Image::byteSwap4 function in image.cpp. Remote attackers can exploit this vulnerability to disclose memory data or cause a denial of service via a crafted TIFF file. Existe una sobrelectura de búfer basado en memoria dinámica (heap) en la función Exiv2::Image::byteSwap4 de image.cpp en la versión 0.26 de Exiv2. Los atacantes remotos pueden explotar esta vulnerabilidad para revelar datos de la memoria o provocar una denegación de servicio (D... • https://bugzilla.redhat.com/show_bug.cgi?id=1524104 • CWE-125: Out-of-bounds Read •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2017-17724 – exiv2: heap-buffer-overflow in Exiv2::IptcData::printStructure in src/iptc.cpp
https://notcve.org/view.php?id=CVE-2017-17724
12 Feb 2018 — In Exiv2 0.26, there is a heap-based buffer over-read in the Exiv2::IptcData::printStructure function in iptc.cpp, related to the "!= 0x1c" case. Remote attackers can exploit this vulnerability to cause a denial of service via a crafted TIFF file. En Exiv2 hay una sobrelectura de búfer basada en memoria dinámica (heap) en la función Exiv2::IptcData::printStructure en iptc.cpp, relacionada con el caso "!= 0x1c". • https://access.redhat.com/errata/RHSA-2019:2101 • CWE-125: Out-of-bounds Read •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 2CVE-2017-17725
https://notcve.org/view.php?id=CVE-2017-17725
12 Feb 2018 — In Exiv2 0.26, there is an integer overflow leading to a heap-based buffer over-read in the Exiv2::getULong function in types.cpp. Remote attackers can exploit the vulnerability to cause a denial of service via a crafted image file. Note that this vulnerability is different from CVE-2017-14864, which is an invalid memory address dereference. Existe un desbordamiento de enteros que conduce a una sobrelectura de búfer basado en memoria dinámica (heap) en la función Exiv2::getULong de types.cpp en la versión 0... • https://bugzilla.redhat.com/show_bug.cgi?id=1525055 • CWE-190: Integer Overflow or Wraparound •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2018-5772 – Gentoo Linux Security Advisory 201811-14
https://notcve.org/view.php?id=CVE-2018-5772
18 Jan 2018 — In Exiv2 0.26, there is a segmentation fault caused by uncontrolled recursion in the Exiv2::Image::printIFDStructure function in the image.cpp file. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted tif file. En Exiv2, hay un fallo de segmentación provocado por la recursión no controlada en la función Exiv2::Image::printIFDStructure en el archivo image.cpp. Los atacantes remotos pueden aprovechar esta vulnerabilidad para provocar una denegación de servicio (DoS) m... • http://www.securityfocus.com/bid/102789 • CWE-674: Uncontrolled Recursion •