Описание
An integer overflow in CrwMap::encode0x1810 of Exiv2 0.27.3 allows attackers to trigger a heap-based buffer overflow and cause a denial of service (DOS) via crafted metadata.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| exiv2 | fixed | 0.27.3-3.1 | package | |
| exiv2 | fixed | 0.27.3-3+deb11u1 | bullseye | package |
Примечания
https://github.com/Exiv2/exiv2/issues/1530
https://github.com/Exiv2/exiv2/commit/9b7a19f957af53304655ed1efe32253a1b11a8d0
In older releases affected code is in src/crwimage.cpp
This is a duplicate of CVE-2021-29458, but mitre finds the evidence unconvincing.
EPSS
Связанные уязвимости
An integer overflow in CrwMap::encode0x1810 of Exiv2 0.27.3 allows attackers to trigger a heap-based buffer overflow and cause a denial of service (DOS) via crafted metadata.
An integer overflow in CrwMap::encode0x1810 of Exiv2 0.27.3 allows attackers to trigger a heap-based buffer overflow and cause a denial of service (DOS) via crafted metadata.
An integer overflow in CrwMap::encode0x1810 of Exiv2 0.27.3 allows attackers to trigger a heap-based buffer overflow and cause a denial of service (DOS) via crafted metadata.
An integer overflow in CrwMap::encode0x1810 of Exiv2 0.27.3 allows attackers to trigger a heap-based buffer overflow and cause a denial of service (DOS) via crafted metadata.
Уязвимость функции CrwMap::encode библиотеки для управления метаданными медиафайлов Exiv2, связанная с целочисленным переполнением, позволяющая нарушителю вызвать отказ в обслуживании
EPSS