CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2018-9303 – exiv2: assertion failure in BigTiffImage::readData in bigtiffimage.cpp
https://notcve.org/view.php?id=CVE-2018-9303
04 Apr 2018 — In Exiv2 0.26, an assertion failure in BigTiffImage::readData in bigtiffimage.cpp results in an abort. En Exiv2 0.26, un fallo de aserción en BigTiffImage::readData en bigtiffimage.cpp resulta en un aborto. The exiv2 packages provide a command line utility which can display and manipulate image metadata such as EXIF, LPTC, and JPEG comments. Issues addressed include buffer overflow, denial of service, integer overflow, null pointer, and out of bounds read vulnerabilities. • https://github.com/xiaoqx/pocs/blob/master/exiv2/readme.md • CWE-617: Reachable Assertion •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 2CVE-2018-9304 – exiv2: divide by zero in BigTiffImage::printIFD in bigtiffimage.cpp
https://notcve.org/view.php?id=CVE-2018-9304
04 Apr 2018 — In Exiv2 0.26, a divide by zero in BigTiffImage::printIFD in bigtiffimage.cpp could result in denial of service. En Exiv2 0.26, una división entre cero en BigTiffImage::printIFD en bigtiffimage.cpp podría resultar en una denegación de servicio (DoS). The exiv2 packages provide a command line utility which can display and manipulate image metadata such as EXIF, LPTC, and JPEG comments. Issues addressed include buffer overflow, denial of service, integer overflow, null pointer, and out of bounds read vulnerab... • https://github.com/Exiv2/exiv2/issues/262 • CWE-369: Divide By Zero •
CVSS: 8.1EPSS: 0%CPEs: 1EXPL: 2CVE-2018-9305 – exiv2: out of bounds read in IptcData::printStructure in iptc.c
https://notcve.org/view.php?id=CVE-2018-9305
04 Apr 2018 — In Exiv2 0.26, an out-of-bounds read in IptcData::printStructure in iptc.c could result in a crash or information leak, related to the "== 0x1c" case. En Exiv2 0.26, una lectura fuera de límites en IptcData::printStructure en iptc.c podría resultar en un cierre inesperado o una fuga de información. Esto está relacionado con el caso "== 0x1c". An out-of-bounds read vulnerability has been discovered in IptcData::printStructure in iptc.cpp file of Exiv2 0.26. An attacker could cause a crash or an information l... • http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00009.html • CWE-125: Out-of-bounds Read •
CVSS: 8.1EPSS: 0%CPEs: 1EXPL: 2CVE-2018-9144 – Gentoo Linux Security Advisory 201811-14
https://notcve.org/view.php?id=CVE-2018-9144
30 Mar 2018 — In Exiv2 0.26, there is an out-of-bounds read in Exiv2::Internal::binaryToString in image.cpp. It could result in denial of service or information disclosure. En Exiv2 0.26, existe una lectura fuera de límites en Exiv2::Internal::binaryToString en image.cpp. Esto podría resultar en una denegación de servicio (DoS) o divulgación de información. Multiple vulnerabilities have been found in Exiv2, the worst of which could result in a Denial of Service condition. • https://github.com/Exiv2/exiv2/issues/254 • CWE-125: Out-of-bounds Read •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2018-9145 – Gentoo Linux Security Advisory 201811-14
https://notcve.org/view.php?id=CVE-2018-9145
30 Mar 2018 — In the DataBuf class in include/exiv2/types.hpp in Exiv2 0.26, an issue exists in the constructor with an initial buffer size. A large size value may lead to a SIGABRT during an attempt at memory allocation. NOTE: some third parties have been unable to reproduce the SIGABRT when using the 4-DataBuf-abort-1 PoC file. En la clase DataBuf en include/exiv2/types.hpp en Exiv2 0.26, existe un problema en el constructor con un tamaño de búfer inicial. Un valor de tamaño grande puede desembocar en un SIGABRT durant... • https://bugzilla.novell.com/show_bug.cgi?id=1087879 • CWE-20: Improper Input Validation •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2018-8977 – exiv2: invalid memory access in Exiv2::Internal::printCsLensFFFF function in canonmn_int.cpp
https://notcve.org/view.php?id=CVE-2018-8977
25 Mar 2018 — In Exiv2 0.26, the Exiv2::Internal::printCsLensFFFF function in canonmn_int.cpp allows remote attackers to cause a denial of service (invalid memory access) via a crafted file. La función Exiv2::Internal::printCsLensFFFF en canonmn_int.cpp en Exiv2 0.26 permite que atacantes remotos provoquen una denegación de servicio (acceso a memoria no válido) mediante un archivo manipulado. The exiv2 packages provide a command line utility which can display and manipulate image metadata such as EXIF, LPTC, and JPEG com... • https://access.redhat.com/errata/RHSA-2019:2101 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 1CVE-2018-8976 – exiv2: out-of-bounds read in Exiv2::Internal::stringFormat image.cpp
https://notcve.org/view.php?id=CVE-2018-8976
25 Mar 2018 — In Exiv2 0.26, jpgimage.cpp allows remote attackers to cause a denial of service (image.cpp Exiv2::Internal::stringFormat out-of-bounds read) via a crafted file. En Exiv2 0.26, jpgimage.cpp permite que atacantes remotos provoquen una denegación de servicio (lectura fuera de límites de Exiv2::Internal::stringFormat en image.cpp) mediante un archivo manipulado. The exiv2 packages provide a command line utility which can display and manipulate image metadata such as EXIF, LPTC, and JPEG comments. Issues addres... • https://access.redhat.com/errata/RHSA-2019:2101 • CWE-125: Out-of-bounds Read •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2017-17722
https://notcve.org/view.php?id=CVE-2017-17722
12 Feb 2018 — In Exiv2 0.26, there is a reachable assertion in the readHeader function in bigtiffimage.cpp, which will lead to a remote denial of service attack via a crafted TIFF file. En Exiv2 0.26, hay una aserción alcanzable en la función readHeader en bigtiffimage.cpp, que conducirá a un ataque de denegación de servicio (DoS) remoto mediante un archivo TIFF manipulado. • https://bugzilla.redhat.com/show_bug.cgi?id=1524116 • CWE-617: Reachable Assertion •
CVSS: 8.1EPSS: 0%CPEs: 1EXPL: 1CVE-2017-17723 – Gentoo Linux Security Advisory 201811-14
https://notcve.org/view.php?id=CVE-2017-17723
12 Feb 2018 — In Exiv2 0.26, there is a heap-based buffer over-read in the Exiv2::Image::byteSwap4 function in image.cpp. Remote attackers can exploit this vulnerability to disclose memory data or cause a denial of service via a crafted TIFF file. Existe una sobrelectura de búfer basado en memoria dinámica (heap) en la función Exiv2::Image::byteSwap4 de image.cpp en la versión 0.26 de Exiv2. Los atacantes remotos pueden explotar esta vulnerabilidad para revelar datos de la memoria o provocar una denegación de servicio (D... • https://bugzilla.redhat.com/show_bug.cgi?id=1524104 • CWE-125: Out-of-bounds Read •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2017-17724 – exiv2: heap-buffer-overflow in Exiv2::IptcData::printStructure in src/iptc.cpp
https://notcve.org/view.php?id=CVE-2017-17724
12 Feb 2018 — In Exiv2 0.26, there is a heap-based buffer over-read in the Exiv2::IptcData::printStructure function in iptc.cpp, related to the "!= 0x1c" case. Remote attackers can exploit this vulnerability to cause a denial of service via a crafted TIFF file. En Exiv2 hay una sobrelectura de búfer basada en memoria dinámica (heap) en la función Exiv2::IptcData::printStructure en iptc.cpp, relacionada con el caso "!= 0x1c". • https://access.redhat.com/errata/RHSA-2019:2101 • CWE-125: Out-of-bounds Read •