AI Score
Confidence
High
EPSS
Percentile
72.9%
Exiv2 through 0.27.1 allows an attacker to cause a denial of service (crash due to assertion failure) via an invalid data location in a CRW image file.
github.com/Exiv2/exiv2/issues/841
github.com/Exiv2/exiv2/pull/842
lists.fedoraproject.org/archives/list/[email protected]/message/FGBT5OD2TF4AIXJUC56WOUJRHAZLZ4DC/
usn.ubuntu.com/4056-1/