QwikSec

Security Database

CVE

CWE

Training

CVE-2017-18238

Published: Mar 15, 2018

Modified: Aug 5, 2024

PUBLISHED

Description

An issue was discovered in Exempi before 2.4.4. The TradQT_Manager::ParseCachedBoxes function in XMPFiles/source/FormatSupport/QuickTime_Support.cpp allows remote attackers to cause a denial of service (infinite loop) via crafted XMP data in a .qt file.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://cgit.freedesktop.org/exempi/commit/?id=886cd1d2314755adb1f4cdb99c16ff00830f0331

x_refsource_CONFIRM

https://bugs.freedesktop.org/show_bug.cgi?id=102483

x_refsource_CONFIRM

[debian-lts-announce] 20180321 [SECURITY] [DLA 1310-1] exempi security update

mailing-list

x_refsource_MLIST

vendor-advisory

x_refsource_UBUNTU

vendor-advisory

x_refsource_REDHAT

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.