Vulnerabilities > Exiv2
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-04-04 | CVE-2018-9305 | Out-of-bounds Read vulnerability in Exiv2 In Exiv2 0.26, an out-of-bounds read in IptcData::printStructure in iptc.c could result in a crash or information leak, related to the "== 0x1c" case. | 5.8 |
| 2018-04-04 | CVE-2018-9304 | Divide By Zero vulnerability in Exiv2 In Exiv2 0.26, a divide by zero in BigTiffImage::printIFD in bigtiffimage.cpp could result in denial of service. | 4.3 |
| 2018-04-04 | CVE-2018-9303 | Reachable Assertion vulnerability in Exiv2 In Exiv2 0.26, an assertion failure in BigTiffImage::readData in bigtiffimage.cpp results in an abort. | 4.3 |
| 2018-03-30 | CVE-2018-9145 | Improper Input Validation vulnerability in Exiv2 0.26 In the DataBuf class in include/exiv2/types.hpp in Exiv2 0.26, an issue exists in the constructor with an initial buffer size. | 4.3 |
| 2018-03-30 | CVE-2018-9144 | Out-of-bounds Read vulnerability in Exiv2 In Exiv2 0.26, there is an out-of-bounds read in Exiv2::Internal::binaryToString in image.cpp. | 5.8 |
| 2018-03-25 | CVE-2018-8977 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Exiv2 0.26 In Exiv2 0.26, the Exiv2::Internal::printCsLensFFFF function in canonmn_int.cpp allows remote attackers to cause a denial of service (invalid memory access) via a crafted file. | 4.3 |
| 2018-03-25 | CVE-2018-8976 | Out-of-bounds Read vulnerability in multiple products In Exiv2 0.26, jpgimage.cpp allows remote attackers to cause a denial of service (image.cpp Exiv2::Internal::stringFormat out-of-bounds read) via a crafted file. | 6.5 |
| 2018-02-12 | CVE-2017-17725 | Integer Overflow or Wraparound vulnerability in Exiv2 0.26 In Exiv2 0.26, there is an integer overflow leading to a heap-based buffer over-read in the Exiv2::getULong function in types.cpp. | 4.3 |
| 2018-02-12 | CVE-2017-17724 | Out-of-bounds Read vulnerability in Exiv2 0.26 In Exiv2 0.26, there is a heap-based buffer over-read in the Exiv2::IptcData::printStructure function in iptc.cpp, related to the "!= 0x1c" case. | 4.3 |
| 2018-02-12 | CVE-2017-17723 | Out-of-bounds Read vulnerability in Exiv2 0.26 In Exiv2 0.26, there is a heap-based buffer over-read in the Exiv2::Image::byteSwap4 function in image.cpp. | 5.8 |