CVE-2014-9449

Опубликовано: 02 янв. 2015

Источник: debian

Описание

Buffer overflow in the RiffVideo::infoTagsHandler function in riffvideo.cpp in Exiv2 0.24 allows remote attackers to cause a denial of service (crash) via a long IKEY INFO tag value in an AVI file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
exiv2	fixed	0.24-4.1		package
exiv2	not-affected		wheezy	package
exiv2	not-affected		squeeze	package

Примечания

http://dev.exiv2.org/issues/960
http://dev.exiv2.org/projects/exiv2/repository/diff?rev=3264&rev_to=3263

Связанные уязвимости

CVE-2014-9449

ubuntu

около 11 лет назад

Buffer overflow in the RiffVideo::infoTagsHandler function in riffvideo.cpp in Exiv2 0.24 allows remote attackers to cause a denial of service (crash) via a long IKEY INFO tag value in an AVI file.

CVE-2014-9449

redhat

больше 11 лет назад

Buffer overflow in the RiffVideo::infoTagsHandler function in riffvideo.cpp in Exiv2 0.24 allows remote attackers to cause a denial of service (crash) via a long IKEY INFO tag value in an AVI file.

CVE-2014-9449

nvd

около 11 лет назад

Buffer overflow in the RiffVideo::infoTagsHandler function in riffvideo.cpp in Exiv2 0.24 allows remote attackers to cause a denial of service (crash) via a long IKEY INFO tag value in an AVI file.

GHSA-cc42-3g88-r78c

github

больше 3 лет назад

Buffer overflow in the RiffVideo::infoTagsHandler function in riffvideo.cpp in Exiv2 0.24 allows remote attackers to cause a denial of service (crash) via a long IKEY INFO tag value in an AVI file.