PT-2023-6829 · Exiv2 · Exiv2

Publicado

2023-11-05

Atualizado

2024-06-15

CVE-2023-44398

CVSS v2.0

Alta

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Exiv2 version v0.28.0

Description The issue is related to an out-of-bounds write in the BmffImage::brotliUncompress() function of the Exiv2 library, which can be triggered when reading the metadata of a crafted image file. This could potentially allow a remote attacker to execute arbitrary code if they can trick the victim into running Exiv2 on a maliciously crafted image file.

Recommendations For Exiv2 version v0.28.0, upgrade to version v0.28.1 to fix the issue. As a temporary workaround, consider avoiding the use of the BmffImage::brotliUncompress() function until the patch is applied. Restrict access to crafted image files to minimize the risk of exploitation.

Exploit

Correção

Heap Based Buffer Overflow

Memory Corruption

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-122CWE-787

Identificadores relacionados

AZL-31939

AZL-36940

BDU:2023-07704

CVE-2023-44398

GHSA-HRW9-GGG3-3R4R

OPENSUSE-SU-2024:13403-1

PYSEC-2023-233

Produtos afetados

Exiv2

PT-2023-6829 · Exiv2 · Exiv2

CVE-2023-44398

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 17