0.009 Low
EPSS
Percentile
82.5%
In Exiv2 0.26, Exiv2::IptcParser::decode in iptc.cpp (called from psdimage.cpp in the PSD image reader) may suffer from a denial of service (heap-based buffer over-read) caused by an integer overflow via a crafted PSD image file.
bugzilla.redhat.com/show_bug.cgi?id=1649094
www.cve.org/CVERecord?id=CVE-2018-19107 https://nvd.nist.gov/vuln/detail/CVE-2018-19107