Уязвимость CVE-2019-17402

CVE-2019-17402

CVSS3: 6.5

ubuntu

почти 6 лет назад

Exiv2 0.27.2 allows attackers to trigger a crash in Exiv2::getULong in types.cpp when called from Exiv2::Internal::CiffDirectory::readDirectory in crwimage_int.cpp, because there is no validation of the relationship of the total size to the offset and size.

CVE-2019-17402

CVSS3: 6.5

redhat

почти 6 лет назад

Exiv2 0.27.2 allows attackers to trigger a crash in Exiv2::getULong in types.cpp when called from Exiv2::Internal::CiffDirectory::readDirectory in crwimage_int.cpp, because there is no validation of the relationship of the total size to the offset and size.

CVE-2019-17402

CVSS3: 6.5

nvd

почти 6 лет назад

Exiv2 0.27.2 allows attackers to trigger a crash in Exiv2::getULong in types.cpp when called from Exiv2::Internal::CiffDirectory::readDirectory in crwimage_int.cpp, because there is no validation of the relationship of the total size to the offset and size.

CVE-2019-17402

CVSS3: 6.5

debian

почти 6 лет назад

Exiv2 0.27.2 allows attackers to trigger a crash in Exiv2::getULong in ...

GHSA-xhv3-q5hx-88ww

CVSS3: 6.5

github

больше 3 лет назад

Exiv2 0.27.2 allows attackers to trigger a crash in Exiv2::getULong in types.cpp when called from Exiv2::Internal::CiffDirectory::readDirectory in crwimage_int.cpp, because there is no validation of the relationship of the total size to the offset and size.

exploitDog

CVE-2019-17402

Описание

Возможность эксплуатации

Связанные уязвимости