Note:
This project will be discontinued after December 13, 2021. [more]
2017-07-17
There is a heap-based buffer over-read in the Image::printIFDStructure function in image.cpp in Exiv2 0.26. A Crafted input will lead to a remote denial of service attack.
| Products | Exiv2 |
| Type | Out-of-bounds Read (CWE-125) |
| First patch | - None (likely due to unavailable code) |
| Links | https://bugzilla.redhat.com/show_bug.cgi?id=1470729 |