EPSS
Percentile
54.3%
libexiv2.so is vulnerable to denial of service. The vulnerability exists due to a segmentation fault in the Image::printIFDStructure function in image.cpp which allows an attacker to crash the application via malicious tiff file.
Image::printIFDStructure
image.cpp
access.redhat.com/security/cve/cve-2018-5772
bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-5772
github.com/advisories/GHSA-5fh8-wc7h-jjmx
github.com/Exiv2/exiv2/commit/ae49250942f4395639961abeed3c15920fcd7241
github.com/Exiv2/exiv2/issues/216