CVE-2017-12956 (NVD)

2017-08-18

There is an illegal address access in Exiv2::FileIo::path[abi:cxx11]() in basicio.cpp of libexiv2 in Exiv2 0.26 that will lead to remote denial of service.

Products Exiv2
Type Out-of-bounds Read (CWE-125)
First patch - None (likely due to unavailable code)
Links https://bugzilla.redhat.com/show_bug.cgi?id=1482296