Max CVSS | 6.8 | Min CVSS | 4.3 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2018-19108 | 4.3 |
In Exiv2 0.26, Exiv2::PsdImage::readMetadata in psdimage.cpp in the PSD image reader may suffer from a denial of service (infinite loop) caused by an integer overflow via a crafted PSD image file.
|
13-01-2023 - 16:35 | 08-11-2018 - 08:29 | |
CVE-2019-13114 | 4.3 |
http.c in Exiv2 through 0.27.1 allows a malicious http server to cause a denial of service (crash due to a NULL pointer dereference) by returning a crafted response that lacks a space character.
|
13-01-2023 - 16:09 | 30-06-2019 - 23:15 | |
CVE-2018-17229 | 4.3 |
Exiv2::d2Data in types.cpp in Exiv2 v0.26 allows remote attackers to cause a denial of service (heap-based buffer overflow) via a crafted image file.
|
24-08-2020 - 17:37 | 19-09-2018 - 22:29 | |
CVE-2018-17230 | 4.3 |
Exiv2::ul2Data in types.cpp in Exiv2 v0.26 allows remote attackers to cause a denial of service (heap-based buffer overflow) via a crafted image file.
|
24-08-2020 - 17:37 | 19-09-2018 - 22:29 | |
CVE-2017-9239 | 4.3 |
An issue was discovered in Exiv2 0.26. When the data structure of the structure ifd is incorrect, the program assigns pValue_ to 0x0, and the value of pValue() is 0x0. TiffImageEntry::doWriteImage will use the value of pValue() to cause a segmentatio
|
09-04-2020 - 00:15 | 26-05-2017 - 10:29 | |
CVE-2017-1000126 | 4.3 |
exiv2 0.26 contains a Stack out of bounds read in webp parser
|
09-04-2020 - 00:15 | 17-11-2017 - 22:29 | |
CVE-2018-19607 | 4.3 |
Exiv2::isoSpeed in easyaccess.cpp in Exiv2 v0.27-RC2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file.
|
06-08-2019 - 17:15 | 27-11-2018 - 07:29 | |
CVE-2018-9305 | 5.8 |
In Exiv2 0.26, an out-of-bounds read in IptcData::printStructure in iptc.c could result in a crash or information leak, related to the "== 0x1c" case.
|
06-08-2019 - 17:15 | 04-04-2018 - 21:29 | |
CVE-2018-17282 | 4.3 |
An issue was discovered in Exiv2 v0.26. The function Exiv2::DataValue::copy in value.cpp has a NULL pointer dereference.
|
06-08-2019 - 17:15 | 20-09-2018 - 20:29 | |
CVE-2018-12265 | 6.8 |
Exiv2 0.26 has an integer overflow in the LoaderExifJpeg class in preview.cpp, leading to an out-of-bounds read in Exiv2::MemIo::read in basicio.cpp.
|
06-08-2019 - 17:15 | 13-06-2018 - 11:29 | |
CVE-2018-12264 | 6.8 |
Exiv2 0.26 has integer overflows in LoaderTiff::getData() in preview.cpp, leading to an out-of-bounds read in Exiv2::ValueType::setDataArea in value.hpp.
|
06-08-2019 - 17:15 | 13-06-2018 - 11:29 |