CVE-2018-10958 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Exiv2

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-400 — Uncontrolled Resource Consumption9 documents7 sources

Severity

6.5MEDIUMNVD

EPSS

1.6%

top 18.14%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Exiv2 Debian Exiv2 Canonical Ubuntu Linux +1 more

Timeline

PublishedMay 10

Latest updateMay 14

Description

In types.cpp in Exiv2 0.26, a large size value may lead to a SIGABRT during an attempt at memory allocation for an Exiv2::Internal::PngChunk::zlibUncompress call.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages4 packages

▶debiandebian/exiv2< exiv2 0.25-4 (bookworm)

▶Debianexiv2/exiv2< 0.25-4+3

▶Ubuntuexiv2/exiv2< 0.23-1ubuntu2.1+2

▶NVDexiv2/exiv20.26

Also affects: Debian Linux 8.0, 9.0, Ubuntu Linux 14.04, 16.04, 17.10, 18.04

🔴Vulnerability Details

GHSA

GHSA-w36f-7jv5-74qh: In types↗2022-05-14

▶

OSV

exiv2 vulnerabilities↗2018-07-03

▶

OSV

CVE-2018-10958: In types↗2018-05-10

▶

📋Vendor Advisories

Ubuntu

Exiv2 vulnerabilities↗2018-07-03

▶

Red Hat

exiv2: SIGABRT caused by memory allocation in types.cpp:Exiv2::Internal::PngChunk::zlibUncompress()↗2018-05-09

▶

Debian

CVE-2018-10958: exiv2 - In types.cpp in Exiv2 0.26, a large size value may lead to a SIGABRT during an a...↗2018

▶

💬Community

Bugzilla

CVE-2018-10958 exiv2: SIGABRT caused by memory allocation in types.cpp:Exiv2::Internal::PngChunk::zlibUncompress() [fedora-all]↗2018-05-16

▶

Bugzilla

CVE-2018-10958 exiv2: SIGABRT caused by memory allocation in types.cpp:Exiv2::Internal::PngChunk::zlibUncompress()↗2018-05-16

▶