Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Exiv2 Subscribe
Filtered by product Exiv2
Total 113 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-13108 1 Exiv2 1 Exiv2 2019-08-08 4.3 MEDIUM 6.5 MEDIUM
An integer overflow in Exiv2 through 0.27.1 allows an attacker to cause a denial of service (SIGSEGV) via a crafted PNG image file, because PngImage::readMetadata mishandles a zero value for iccOffset.
CVE-2018-10958 3 Canonical, Debian, Exiv2 3 Ubuntu Linux, Debian Linux, Exiv2 2019-08-06 4.3 MEDIUM 6.5 MEDIUM
In types.cpp in Exiv2 0.26, a large size value may lead to a SIGABRT during an attempt at memory allocation for an Exiv2::Internal::PngChunk::zlibUncompress call.
CVE-2018-10772 1 Exiv2 1 Exiv2 2019-08-06 4.3 MEDIUM 6.5 MEDIUM
The tEXtToDataBuf function in pngimage.cpp in Exiv2 through 0.26 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted file.
CVE-2018-12265 3 Canonical, Debian, Exiv2 3 Ubuntu Linux, Debian Linux, Exiv2 2019-08-06 6.8 MEDIUM 8.8 HIGH
Exiv2 0.26 has an integer overflow in the LoaderExifJpeg class in preview.cpp, leading to an out-of-bounds read in Exiv2::MemIo::read in basicio.cpp.
CVE-2018-12264 3 Canonical, Debian, Exiv2 3 Ubuntu Linux, Debian Linux, Exiv2 2019-08-06 6.8 MEDIUM 8.8 HIGH
Exiv2 0.26 has integer overflows in LoaderTiff::getData() in preview.cpp, leading to an out-of-bounds read in Exiv2::ValueType::setDataArea in value.hpp.
CVE-2018-11037 1 Exiv2 1 Exiv2 2019-08-06 4.3 MEDIUM 6.5 MEDIUM
In Exiv2 0.26, the Exiv2::PngImage::printStructure function in pngimage.cpp allows remote attackers to cause an information leak via a crafted file.
CVE-2018-9305 1 Exiv2 1 Exiv2 2019-08-06 5.8 MEDIUM 8.1 HIGH
In Exiv2 0.26, an out-of-bounds read in IptcData::printStructure in iptc.c could result in a crash or information leak, related to the "== 0x1c" case.
CVE-2018-8977 1 Exiv2 1 Exiv2 2019-08-06 4.3 MEDIUM 6.5 MEDIUM
In Exiv2 0.26, the Exiv2::Internal::printCsLensFFFF function in canonmn_int.cpp allows remote attackers to cause a denial of service (invalid memory access) via a crafted file.
CVE-2018-19607 1 Exiv2 1 Exiv2 2019-08-06 4.3 MEDIUM 6.5 MEDIUM
Exiv2::isoSpeed in easyaccess.cpp in Exiv2 v0.27-RC2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file.
CVE-2018-17282 1 Exiv2 1 Exiv2 2019-08-06 4.3 MEDIUM 6.5 MEDIUM
An issue was discovered in Exiv2 v0.26. The function Exiv2::DataValue::copy in value.cpp has a NULL pointer dereference.
CVE-2019-14368 1 Exiv2 1 Exiv2 2019-08-01 6.8 MEDIUM 7.8 HIGH
Exiv2 0.27.99.0 has a heap-based buffer over-read in Exiv2::RafImage::readMetadata() in rafimage.cpp.
CVE-2018-9145 1 Exiv2 1 Exiv2 2019-03-27 4.3 MEDIUM 6.5 MEDIUM
In the DataBuf class in include/exiv2/types.hpp in Exiv2 0.26, an issue exists in the constructor with an initial buffer size. A large size value may lead to a SIGABRT during an attempt at memory allocation. NOTE: some third parties have been unable to reproduce the SIGABRT when using the 4-DataBuf-abort-1 PoC file.
CVE-2018-9144 1 Exiv2 1 Exiv2 2019-02-27 5.8 MEDIUM 8.1 HIGH
In Exiv2 0.26, there is an out-of-bounds read in Exiv2::Internal::binaryToString in image.cpp. It could result in denial of service or information disclosure.
CVE-2018-9304 1 Exiv2 1 Exiv2 2019-02-27 4.3 MEDIUM 6.5 MEDIUM
In Exiv2 0.26, a divide by zero in BigTiffImage::printIFD in bigtiffimage.cpp could result in denial of service.
CVE-2018-14338 1 Exiv2 1 Exiv2 2018-09-17 6.8 MEDIUM 8.1 HIGH
samples/geotag.cpp in the example code of Exiv2 0.26 misuses the realpath function on POSIX platforms (other than Apple platforms) where glibc is not used, possibly leading to a buffer overflow.
CVE-2017-17725 1 Exiv2 1 Exiv2 2018-03-07 4.3 MEDIUM 6.5 MEDIUM
In Exiv2 0.26, there is an integer overflow leading to a heap-based buffer over-read in the Exiv2::getULong function in types.cpp. Remote attackers can exploit the vulnerability to cause a denial of service via a crafted image file. Note that this vulnerability is different from CVE-2017-14864, which is an invalid memory address dereference.
CVE-2017-1000128 1 Exiv2 1 Exiv2 2017-11-29 4.3 MEDIUM 5.5 MEDIUM
Exiv2 0.26 contains a stack out of bounds read in JPEG2000 parser
CVE-2017-1000127 1 Exiv2 1 Exiv2 2017-11-29 4.3 MEDIUM 5.5 MEDIUM
Exiv2 0.26 contains a heap buffer overflow in tiff parser
CVE-2014-9449 2 Exiv2, Fedoraproject 2 Exiv2, Fedora 2017-11-09 5.0 MEDIUM N/A
Buffer overflow in the RiffVideo::infoTagsHandler function in riffvideo.cpp in Exiv2 0.24 allows remote attackers to cause a denial of service (crash) via a long IKEY INFO tag value in an AVI file.
CVE-2017-14865 1 Exiv2 1 Exiv2 2017-10-04 4.3 MEDIUM 5.5 MEDIUM
There is a heap-based buffer overflow in the Exiv2::us2Data function of types.cpp in Exiv2 0.26. A Crafted input will lead to a denial of service attack.