GHSA-2g3c-rmmx-7hq8

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

There is an invalid free in the Action::TaskFactory::cleanup function of actions.cpp in Exiv2 0.26. A crafted input will lead to a remote denial of service attack.

Ссылки

EPSS

Процентиль: 80%

0.01388

Низкий

6.5 Medium

CVSS3

CVE ID

CVE-2017-11337

Дефекты

CWE-416

Связанные уязвимости

CVE-2017-11337

CVSS3: 6.5

ubuntu

больше 8 лет назад

There is an invalid free in the Action::TaskFactory::cleanup function of actions.cpp in Exiv2 0.26. A crafted input will lead to a remote denial of service attack.

CVE-2017-11337

CVSS3: 3.3

redhat

больше 8 лет назад

There is an invalid free in the Action::TaskFactory::cleanup function of actions.cpp in Exiv2 0.26. A crafted input will lead to a remote denial of service attack.

CVE-2017-11337

CVSS3: 6.5

nvd

больше 8 лет назад

There is an invalid free in the Action::TaskFactory::cleanup function of actions.cpp in Exiv2 0.26. A crafted input will lead to a remote denial of service attack.

CVE-2017-11337

CVSS3: 6.5

debian

больше 8 лет назад

There is an invalid free in the Action::TaskFactory::cleanup function ...

openSUSE-SU-2018:1961-1

suse-cvrf

больше 7 лет назад

Security update for exiv2

EPSS

Процентиль: 80%

0.01388

Низкий

6.5 Medium

CVSS3

CVE ID

CVE-2017-11337

Дефекты

CWE-416