Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2019-13111

Опубликовано: 30 июн. 2019
Источник: debian

Описание

A WebPImage::decodeChunks integer overflow in Exiv2 through 0.27.1 allows an attacker to cause a denial of service (large heap allocation followed by a very long running loop) via a crafted WEBP image file.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
exiv2not-affectedpackage

Примечания

  • https://github.com/Exiv2/exiv2/issues/791

  • https://github.com/Exiv2/exiv2/pull/797/commits

Связанные уязвимости

ubuntu логотип

CVE-2019-13111

CVSS3: 5.5
ubuntu
около 6 лет назад

A WebPImage::decodeChunks integer overflow in Exiv2 through 0.27.1 allows an attacker to cause a denial of service (large heap allocation followed by a very long running loop) via a crafted WEBP image file.

redhat логотип

CVE-2019-13111

CVSS3: 3.3
redhat
около 6 лет назад

A WebPImage::decodeChunks integer overflow in Exiv2 through 0.27.1 allows an attacker to cause a denial of service (large heap allocation followed by a very long running loop) via a crafted WEBP image file.

nvd логотип

CVE-2019-13111

CVSS3: 5.5
nvd
около 6 лет назад

A WebPImage::decodeChunks integer overflow in Exiv2 through 0.27.1 allows an attacker to cause a denial of service (large heap allocation followed by a very long running loop) via a crafted WEBP image file.

github логотип

GHSA-hmv7-h8ff-46mm

CVSS3: 5.5
github
около 3 лет назад

A WebPImage::decodeChunks integer overflow in Exiv2 through 0.27.1 allows an attacker to cause a denial of service (large heap allocation followed by a very long running loop) via a crafted WEBP image file.

suse-cvrf логотип

SUSE-SU-2022:3892-1

suse-cvrf
почти 3 года назад

Security update for exiv2