CVE-2020-18898

Опубликовано: 19 авг. 2021

Источник: debian

EPSS Низкий

Описание

A stack exhaustion issue in the printIFDStructure function of Exiv2 0.27 allows remote attackers to cause a denial of service (DOS) via a crafted file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
exiv2	unfixed			package

Примечания

https://github.com/Exiv2/exiv2/issues/741
Negligible security impact, issue in debugging only function

EPSS

Процентиль: 37%

0.00158

Низкий

Связанные уязвимости

CVE-2020-18898

CVSS3: 6.5

ubuntu

почти 4 года назад

A stack exhaustion issue in the printIFDStructure function of Exiv2 0.27 allows remote attackers to cause a denial of service (DOS) via a crafted file.

CVE-2020-18898

CVSS3: 6.5

redhat

почти 4 года назад

A stack exhaustion issue in the printIFDStructure function of Exiv2 0.27 allows remote attackers to cause a denial of service (DOS) via a crafted file.

CVE-2020-18898

CVSS3: 6.5

nvd

почти 4 года назад

A stack exhaustion issue in the printIFDStructure function of Exiv2 0.27 allows remote attackers to cause a denial of service (DOS) via a crafted file.

RLSA-2022:1842

rocky

около 3 лет назад

Moderate: exiv2 security, bug fix, and enhancement update

RLSA-2022:1797

rocky

около 3 лет назад

Moderate: compat-exiv2-026 security update

EPSS

Процентиль: 37%

0.00158

Низкий