1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
|
Candidate: CVE-2017-12957
PublicDate: 2017-08-18
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12957
https://bugzilla.redhat.com/show_bug.cgi?id=1482423
Description:
There is a heap-based buffer over-read in libexiv2 in Exiv2 0.26 that is
triggered in the Exiv2::Image::io function in image.cpp. It will lead to
remote denial of service.
Ubuntu-Description:
Notes:
ratliff> prints an error message and exits cleanly trusty-artful
Bugs:
Priority: low
Discovered-by:
Assigned-to:
Patches_exiv2:
upstream_exiv2: needs-triage
precise/esm_exiv2: DNE
trusty_exiv2: needs-triage
vivid/ubuntu-core_exiv2: DNE
xenial_exiv2: needs-triage
zesty_exiv2: needs-triage
devel_exiv2: needs-triage
|