CVE-2018-19535

Published
View on NVD ↗
CVSS v3
6.5
MEDIUM
CVSS v2
4.3
MEDIUM
Affected
1
PROJECT

Description

In Exiv2 0.26 and previous versions, PngChunk::readRawProfile in pngchunk_int.cpp may cause a denial of service (application crash due to a heap-based buffer over-read) via a crafted PNG file.

Exiv2/exiv2
Exiv2/exiv2
Image metadata library and tools
GitHubGitHub
1.14K