CVE-2018-19108 - In Exiv2 0.26, Exiv2::PsdImage::readMetadata in psdimage.cpp in the PSD image reader may suffer from

CVE-2018-19108

Summary

In Exiv2 0.26, Exiv2::PsdImage::readMetadata in psdimage.cpp in the PSD image reader may suffer from a denial of service (infinite loop) caused by an integer overflow via a crafted PSD image file.

References

Vulnerable Configurations

cpe:2.3:a:exiv2:exiv2:0.26:*:*:*:*:*:*:*
cpe:2.3:a:exiv2:exiv2:0.26:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*

CVSS

Base:	4.3 (as of 13-01-2023 - 16:35)
Impact:
Exploitability:

CWE

CWE-835

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:N/AC:M/Au:N/C:N/I:N/A:P

redhat via4

advisories

rhsa

id	RHSA-2019:2101

rpms

exiv2-0:0.27.0-2.el7_6
exiv2-debuginfo-0:0.27.0-2.el7_6
exiv2-devel-0:0.27.0-2.el7_6
exiv2-doc-0:0.27.0-2.el7_6
exiv2-libs-0:0.27.0-2.el7_6
exiv2-0:0.27.2-5.el8
exiv2-debuginfo-0:0.27.2-5.el8
exiv2-debugsource-0:0.27.2-5.el8
exiv2-devel-0:0.27.2-5.el8
exiv2-doc-0:0.27.2-5.el8
exiv2-libs-0:0.27.2-5.el8
exiv2-libs-debuginfo-0:0.27.2-5.el8
gegl-0:0.2.0-39.el8
gegl-debuginfo-0:0.2.0-39.el8
gegl-debugsource-0:0.2.0-39.el8
gnome-color-manager-0:3.28.0-3.el8
gnome-color-manager-debuginfo-0:3.28.0-3.el8
gnome-color-manager-debugsource-0:3.28.0-3.el8
libgexiv2-0:0.10.8-4.el8
libgexiv2-debuginfo-0:0.10.8-4.el8
libgexiv2-debugsource-0:0.10.8-4.el8
libgexiv2-devel-0:0.10.8-4.el8

refmap via4

misc	https://github.com/Exiv2/exiv2/issues/426 https://github.com/Exiv2/exiv2/pull/518
mlist	[debian-lts-announce] 20190226 [SECURITY] [DLA 1691-1] exiv2 security update
suse	openSUSE-SU-2020:0482
ubuntu	USN-4056-1

Last major update

13-01-2023 - 16:35

Published

08-11-2018 - 08:29

Last modified

13-01-2023 - 16:35