CVE-2018-19607

Опубликовано: 27 нояб. 2018

Источник: debian

EPSS Низкий

Описание

Exiv2::isoSpeed in easyaccess.cpp in Exiv2 v0.27-RC2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
exiv2	not-affected			package

Примечания

Introduced by: https://github.com/Exiv2/exiv2/commit/97e7905a8b90fcbd5e8c440ad7d55bf8ffe007e5
Fixed by: https://github.com/Exiv2/exiv2/commit/6e42c1b55e0fc4f360cc56010b0ffe19aa6062d9

EPSS

Процентиль: 71%

0.00676

Низкий

Связанные уязвимости

CVE-2018-19607

CVSS3: 6.5

ubuntu

больше 6 лет назад

Exiv2::isoSpeed in easyaccess.cpp in Exiv2 v0.27-RC2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file.

CVE-2018-19607

CVSS3: 3.3

redhat

больше 6 лет назад

Exiv2::isoSpeed in easyaccess.cpp in Exiv2 v0.27-RC2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file.

CVE-2018-19607

CVSS3: 6.5

nvd

больше 6 лет назад

Exiv2::isoSpeed in easyaccess.cpp in Exiv2 v0.27-RC2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file.

GHSA-xpv8-33xp-mjf2

CVSS3: 6.5

github

около 3 лет назад

Exiv2::isoSpeed in easyaccess.cpp in Exiv2 v0.27-RC2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file.

openSUSE-SU-2020:0482-1

suse-cvrf

больше 5 лет назад

Security update for exiv2

EPSS

Процентиль: 71%

0.00676

Низкий