Lucene search

PRIOn knowledge basePRION:CVE-2018-12265

HistoryJun 13, 2018 - 11:29 a.m.

Integer overflow

2018-06-1311:29:00

PRIOn knowledge base

www.prio-n.com

8.5 High

AI Score

Confidence

High

0.012 Low

EPSS

Percentile

85.0%

JSON

Exiv2 0.26 has an integer overflow in the LoaderExifJpeg class in preview.cpp, leading to an out-of-bounds read in Exiv2::MemIo::read in basicio.cpp.

CPENameOperatorVersion
ubuntu_linuxeq16.04
ubuntu_linuxeq14.04
ubuntu_linuxeq17.10
ubuntu_linuxeq18.04
debian_linuxeq8.0
debian_linuxeq9.0
exiv2eq0.26

Name	Operator	Version
ubuntu_linux	eq	16.04
ubuntu_linux	eq	14.04
ubuntu_linux	eq	17.10
ubuntu_linux	eq	18.04
debian_linux	eq	8.0
debian_linux	eq	9.0
exiv2	eq	0.26

References

lists.opensuse.org/opensuse-security-announce/2020-04/msg00009.html

access.redhat.com/errata/RHSA-2019:2101

github.com/Exiv2/exiv2/issues/365

github.com/TeamSeri0us/pocs/blob/master/exiv2/1-out-of-read-Poc

lists.debian.org/debian-lts-announce/2018/06/msg00010.html

security.gentoo.org/glsa/201811-14

usn.ubuntu.com/3700-1/

www.debian.org/security/2018/dsa-4238