CVE-2019-13110Out-of-bounds Read in Exiv2

CWE-125Out-of-bounds ReadCWE-190Integer Overflow or WraparoundCWE-400Uncontrolled Resource Consumption10 documents7 sources
Severity
6.5MEDIUMNVD
EPSS
1.3%
top 20.27%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
Exiv2Debian Exiv2Canonical Ubuntu Linux+2 more
Timeline
PublishedJun 30
Latest updateMay 24

Description

A CiffDirectory::readDirectory integer overflow and out-of-bounds read in Exiv2 through 0.27.1 allows an attacker to cause a denial of service (SIGSEGV) via a crafted CRW image file.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages4 packages

debiandebian/exiv2< exiv2 0.27.2-6 (bookworm)
Debianexiv2/exiv2< 0.27.2-6+3
Ubuntuexiv2/exiv2< 0.25-2.1ubuntu16.04.4+1
NVDexiv2/exiv20.27.1

Also affects: Debian Linux 10.0, Fedora 30, Ubuntu Linux 16.04, 18.04, 18.10, 19.04

Patches

Patch: github.comPatch: github.com

🔴Vulnerability Details

3
GHSA
GHSA-x4fr-qpcc-rhww: A CiffDirectory::readDirectory integer overflow and out-of-bounds read in Exiv2 through 02022-05-24
OSV
exiv2 vulnerabilities2019-07-15
OSV
CVE-2019-13110: A CiffDirectory::readDirectory integer overflow and out-of-bounds read in Exiv2 through 02019-06-30

📋Vendor Advisories

4
Red Hat
exiv2: integer buffer overflow in getUShort fucntion leads to DoS2021-07-13
Ubuntu
Exiv2 vulnerabilities2019-07-15
Red Hat
exiv2: integer-overflow and out-of-bounds read in CiffDirectory::readDirectory leads to denail of service2019-06-30
Debian
CVE-2019-13110: exiv2 - A CiffDirectory::readDirectory integer overflow and out-of-bounds read in Exiv2 ...2019

💬Community

2
Bugzilla
CVE-2019-13110 exiv2: integer-overflow and out-of-bounds read in CiffDirectory::readDirectory leads to denail of service [fedora-all]2019-07-10
Bugzilla
CVE-2019-13110 exiv2: integer-overflow and out-of-bounds read in CiffDirectory::readDirectory leads to denail of service2019-07-10