Bug 1660424 (CVE-2018-20097) - CVE-2018-20097 exiv2: Segmentation fault in Exiv2::Internal::TiffParserWorker::findPrimaryGroups function
Summary: CVE-2018-20097 exiv2: Segmentation fault in Exiv2::Internal::TiffParserWorker...
Status: NEW
Alias: CVE-2018-20097
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
low
low
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard: impact=low,public=20181210,reported=2...
Keywords: Security
Depends On: 1660427 1665494 1665495 1660428
Blocks: 1660429
TreeView+ depends on / blocked
 
Reported: 2018-12-18 10:10 UTC by Andrej Nemec
Modified: 2019-06-08 23:46 UTC (History)
4 users (show)

(edit)
Clone Of:
(edit)
Last Closed:


Attachments (Terms of Use)

Description Andrej Nemec 2018-12-18 10:10:14 UTC
There is a SEGV in Exiv2::Internal::TiffParserWorker::findPrimaryGroups of tiffimage_int.cpp in Exiv2 0.27-RC3. A crafted input will lead to a denial of service attack.

Upstream issue:

https://github.com/Exiv2/exiv2/issues/590

References:

https://github.com/TeamSeri0us/pocs/tree/master/exiv2/20181206

Comment 1 Andrej Nemec 2018-12-18 10:12:57 UTC
Created exiv2 tracking bugs for this issue:

Affects: fedora-all [bug 1660427]


Created mingw-exiv2 tracking bugs for this issue:

Affects: fedora-all [bug 1660428]

Comment 5 Adam Mariš 2019-01-11 15:28:16 UTC
Statement:

This issue did not affect the versions of exiv2 as shipped with Red Hat Enterprise Linux 6. This issue affects the versions of exiv2 as shipped with Red Hat Enterprise Linux 7. Red Hat Product Security has rated this issue as having a security impact of Low. A future update may address this issue. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.


Note You need to log in before you can comment on or make changes to this bug.