Описание
Exiv2 0.26 has a heap-based buffer over-read in WebPImage::decodeChunks in webpimage.cpp.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | exiv2 | Not affected | ||
| Red Hat Enterprise Linux 8 | exiv2 | Not affected | ||
| Red Hat Enterprise Linux 7 | exiv2 | Fixed | RHSA-2019:2101 | 06.08.2019 |
Показывать по
10
Дополнительная информация
Статус:
Low
Дефект:
CWE-122
https://bugzilla.redhat.com/show_bug.cgi?id=1601628exiv2: heap-based buffer over-read in WebPImage::decodeChunks in webpimage.cpp
EPSS
Процентиль: 60%
0.00396
Низкий
3.3 Low
CVSS3
Связанные уязвимости
CVSS3: 8.8
ubuntu
около 7 лет назад
Exiv2 0.26 has a heap-based buffer over-read in WebPImage::decodeChunks in webpimage.cpp.
CVSS3: 8.8
nvd
около 7 лет назад
Exiv2 0.26 has a heap-based buffer over-read in WebPImage::decodeChunks in webpimage.cpp.
CVSS3: 8.8
debian
около 7 лет назад
Exiv2 0.26 has a heap-based buffer over-read in WebPImage::decodeChunk ...
CVSS3: 8.8
github
около 3 лет назад
Exiv2 0.26 has a heap-based buffer over-read in WebPImage::decodeChunks in webpimage.cpp.
oracle-oval
почти 6 лет назад
ELSA-2019-2101: exiv2 security, bug fix, and enhancement update (LOW)
EPSS
Процентиль: 60%
0.00396
Низкий
3.3 Low
CVSS3