CVE-2019-13112

Published: Jun 30, 2019

Modified: Aug 4, 2024

PUBLISHED

Description

A PngChunk::parseChunkContent uncontrolled memory allocation in Exiv2 through 0.27.1 allows an attacker to cause a denial of service (crash due to an std::bad_alloc exception) via a crafted PNG image file.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/Exiv2/exiv2/issues/845

https://github.com/Exiv2/exiv2/pull/846

USN-4056-1

vendor-advisory

FEDORA-2019-60553d5a18

vendor-advisory

[debian-lts-announce] 20230110 [SECURITY] [DLA 3265-1] exiv2 security update

mailing-list

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2019-13112

Description

Affected Products

References