Описание
There is a heap-based buffer overflow in the Exiv2::l2Data function of types.cpp in Exiv2 0.26. A Crafted input will lead to a denial of service attack.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | exiv2 | Will not fix | ||
| Red Hat Enterprise Linux 7 | exiv2 | Will not fix |
Показывать по
10
Дополнительная информация
Статус:
Low
Дефект:
CWE-122
https://bugzilla.redhat.com/show_bug.cgi?id=1500307exiv2: Heap-buffer overflow in the Exiv2::l2Data function
EPSS
Процентиль: 50%
0.00274
Низкий
3.3 Low
CVSS3
Связанные уязвимости
CVSS3: 5.5
ubuntu
больше 8 лет назад
There is a heap-based buffer overflow in the Exiv2::l2Data function of types.cpp in Exiv2 0.26. A Crafted input will lead to a denial of service attack.
CVSS3: 5.5
nvd
больше 8 лет назад
There is a heap-based buffer overflow in the Exiv2::l2Data function of types.cpp in Exiv2 0.26. A Crafted input will lead to a denial of service attack.
CVSS3: 5.5
debian
больше 8 лет назад
There is a heap-based buffer overflow in the Exiv2::l2Data function of ...
CVSS3: 5.5
github
больше 3 лет назад
There is a heap-based buffer overflow in the Exiv2::l2Data function of types.cpp in Exiv2 0.26. A Crafted input will lead to a denial of service attack.
EPSS
Процентиль: 50%
0.00274
Низкий
3.3 Low
CVSS3