Exiv2::Internal::PngChunk::parseTXTChunk in Exiv2 v0.26 allows remote malicious users to cause a denial of service (heap-based buffer over-read) via a crafted image file, a different vulnerability than CVE-2018-10999.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
exiv2 exiv2 0.26 |
||
canonical ubuntu linux 16.04 |
||
debian debian linux 8.0 |
||
canonical ubuntu linux 18.10 |
||
canonical ubuntu linux 18.04 |
||
canonical ubuntu linux 14.04 |