Описание
Exiv2 0.27.2 allows attackers to trigger a crash in Exiv2::getULong in types.cpp when called from Exiv2::Internal::CiffDirectory::readDirectory in crwimage_int.cpp, because there is no validation of the relationship of the total size to the offset and size.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 0.25-3.1ubuntu0.18.04.4 |
| devel | released | 0.25-4ubuntu3 |
| disco | released | 0.25-4ubuntu1.2 |
| eoan | released | 0.25-4ubuntu2.1 |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/bionic | released | 0.25-3.1ubuntu0.18.04.4 |
| esm-infra/xenial | released | 0.25-2.1ubuntu16.04.5 |
| precise/esm | DNE | |
| trusty | ignored | end of standard support |
| trusty/esm | DNE |
Показывать по
EPSS
4.3 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
Exiv2 0.27.2 allows attackers to trigger a crash in Exiv2::getULong in types.cpp when called from Exiv2::Internal::CiffDirectory::readDirectory in crwimage_int.cpp, because there is no validation of the relationship of the total size to the offset and size.
Exiv2 0.27.2 allows attackers to trigger a crash in Exiv2::getULong in types.cpp when called from Exiv2::Internal::CiffDirectory::readDirectory in crwimage_int.cpp, because there is no validation of the relationship of the total size to the offset and size.
Exiv2 0.27.2 allows attackers to trigger a crash in Exiv2::getULong in ...
Exiv2 0.27.2 allows attackers to trigger a crash in Exiv2::getULong in types.cpp when called from Exiv2::Internal::CiffDirectory::readDirectory in crwimage_int.cpp, because there is no validation of the relationship of the total size to the offset and size.
EPSS
4.3 Medium
CVSS2
6.5 Medium
CVSS3