Описание
An issue was discovered in libexif before 0.6.22. An unrestricted size in handling Canon EXIF MakerNote data could lead to consumption of large amounts of compute time for decoding EXIF data.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 0.6.21-4ubuntu0.5 |
| devel | not-affected | 0.6.22-1 |
| eoan | released | 0.6.21-5.1ubuntu0.5 |
| esm-infra-legacy/trusty | released | 0.6.21-1ubuntu1+esm5 |
| esm-infra/bionic | released | 0.6.21-4ubuntu0.5 |
| esm-infra/focal | released | 0.6.21-6ubuntu0.3 |
| esm-infra/xenial | released | 0.6.21-2ubuntu0.5 |
| focal | released | 0.6.21-6ubuntu0.3 |
| precise/esm | not-affected | 0.6.20-2ubuntu0.6 |
| trusty | ignored | end of standard support |
Показывать по
EPSS
5 Medium
CVSS2
7.5 High
CVSS3
Связанные уязвимости
An issue was discovered in libexif before 0.6.22. An unrestricted size in handling Canon EXIF MakerNote data could lead to consumption of large amounts of compute time for decoding EXIF data.
An issue was discovered in libexif before 0.6.22. An unrestricted size in handling Canon EXIF MakerNote data could lead to consumption of large amounts of compute time for decoding EXIF data.
An issue was discovered in libexif before 0.6.22. An unrestricted size ...
An issue was discovered in libexif before 0.6.22. An unrestricted size in handling Canon EXIF MakerNote data could lead to consumption of large amounts of compute time for decoding EXIF data.
Уязвимость библиотеки для грамматического разбора EXIF-файлов libexif, связанная с неконтролируемым расходом ресурсов, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
5 Medium
CVSS2
7.5 High
CVSS3