CVE-2020-18899
6.5MEDIUMAn uncontrolled memory allocation in DataBufdata(subBox.length-sizeof(box)) function of Exiv2 0.27 allows attackers to cause a denial of service (DOS) via a crafted input.
Publicado: 8/19/2021Atualizado: 11/21/2024
Descrição
An uncontrolled memory allocation in DataBufdata(subBox.length-sizeof(box)) function of Exiv2 0.27 allows attackers to cause a denial of service (DOS) via a crafted input.
Análise IADesenvolvido por IA
Produtos Afetados
exiv2exiv2
0.27
Referências
- https://cwe.mitre.org/data/definitions/789.htmlTechnical Description
- https://github.com/Exiv2/exiv2/issues/742ExploitIssue TrackingThird Party Advisory
- https://security.gentoo.org/glsa/202312-06
- https://cwe.mitre.org/data/definitions/789.htmlTechnical Description
- https://github.com/Exiv2/exiv2/issues/742ExploitIssue TrackingThird Party Advisory
- https://security.gentoo.org/glsa/202312-06