mirror of
https://github.com/0xMarcio/cve.git
synced 2025-12-30 04:49:42 +00:00
726 B
726 B
CVE-2018-12265
Description
Exiv2 0.26 has an integer overflow in the LoaderExifJpeg class in preview.cpp, leading to an out-of-bounds read in Exiv2::MemIo::read in basicio.cpp.
POC
Reference
- https://github.com/Exiv2/exiv2/issues/365
- https://github.com/TeamSeri0us/pocs/blob/master/exiv2/1-out-of-read-Poc