5
CVE-2012-2837
- EPSS 3.86%
- Veröffentlicht 13.07.2012 10:34:59
- Zuletzt bearbeitet 16.06.2026 23:42:11
- Quelle chrome-cve-admin@google.com
- CVE-Watchlists
- Unerledigt
The mnote_olympus_entry_get_value function in olympus/mnote-olympus-entry.c in the EXIF Tag Parsing Library (aka libexif) before 0.6.21 allows remote attackers to cause a denial of service (divide-by-zero error) via an image with crafted EXIF tags that are not properly handled during the formatting of EXIF maker note tags.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Libexif Project ≫ Libexif Version <= 0.6.20
Libexif Project ≫ Libexif Version0.6.14
Libexif Project ≫ Libexif Version0.6.15
Libexif Project ≫ Libexif Version0.6.16
Libexif Project ≫ Libexif Version0.6.18
Libexif Project ≫ Libexif Version0.6.19
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 3.86% | 0.888 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:N/A:P
|
http://lists.opensuse.org/opensuse-security-announce/2012-07/msg00014.html
http://lists.opensuse.org/opensuse-security-announce/2012-07/msg00015.html
http://rhn.redhat.com/errata/RHSA-2012-1255.html
http://secunia.com/advisories/49988
http://sourceforge.net/mailarchive/message.php?msg_id=29534027
http://www.debian.org/security/2012/dsa-2559
http://www.securityfocus.com/bid/54437
http://www.ubuntu.com/usn/USN-1513-1