[Forgot Password]
Login  Register Subscribe

30481

 
 

423868

 
 

255116

 
 

909

 
 

198683

 
 

282

Paid content will be excluded from the download.


Download | Alert*
OVAL

CVE-2019-13108 -- exiv2

Deprecated
ID: oval:org.secpod.oval:def:2005362Date: (C)2020-10-22   (M)2023-12-26
Class: VULNERABILITYFamily: unix




An integer overflow in Exiv2 through 0.27.1 allows an attacker to cause a denial of service via a crafted PNG image file, because PngImage::readMetadata mishandles a zero value for iccOffset.

Platform:
Debian 10.x
Debian 9.x
Product:
exiv2
Reference:
CVE-2019-13108
CVE    1
CVE-2019-13108
CPE    3
cpe:/o:debian:debian_linux:10.x
cpe:/a:exiv2:exiv2
cpe:/o:debian:debian_linux:9.x

© SecPod Technologies