Описание
An issue was discovered in Exiv2 0.26. When the data structure of the structure ifd is incorrect, the program assigns pValue_ to 0x0, and the value of pValue() is 0x0. TiffImageEntry::doWriteImage will use the value of pValue() to cause a segmentation fault. To exploit this vulnerability, someone must open a crafted tiff file.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | not-affected | 0.25-3.1 |
| bionic | not-affected | 0.25-3.1 |
| cosmic | not-affected | 0.25-3.1 |
| devel | not-affected | 0.25-3.1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [0.23-1ubuntu2.2]] |
| esm-infra/bionic | not-affected | 0.25-3.1 |
| esm-infra/xenial | released | 0.25-2.1ubuntu16.04.3 |
| precise/esm | DNE | |
| trusty | released | 0.23-1ubuntu2.2 |
| trusty/esm | DNE | trusty was released [0.23-1ubuntu2.2] |
Показывать по
EPSS
4.3 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
An issue was discovered in Exiv2 0.26. When the data structure of the structure ifd is incorrect, the program assigns pValue_ to 0x0, and the value of pValue() is 0x0. TiffImageEntry::doWriteImage will use the value of pValue() to cause a segmentation fault. To exploit this vulnerability, someone must open a crafted tiff file.
An issue was discovered in Exiv2 0.26. When the data structure of the structure ifd is incorrect, the program assigns pValue_ to 0x0, and the value of pValue() is 0x0. TiffImageEntry::doWriteImage will use the value of pValue() to cause a segmentation fault. To exploit this vulnerability, someone must open a crafted tiff file.
An issue was discovered in Exiv2 0.26. When the data structure of the ...
An issue was discovered in Exiv2 0.26. When the data structure of the structure ifd is incorrect, the program assigns pValue_ to 0x0, and the value of pValue() is 0x0. TiffImageEntry::doWriteImage will use the value of pValue() to cause a segmentation fault. To exploit this vulnerability, someone must open a crafted tiff file.
EPSS
4.3 Medium
CVSS2
6.5 Medium
CVSS3