PT-2023-6829 · Exiv2 · Exiv2

Published

2023-11-05

Updated

2024-06-15

CVE-2023-44398

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Exiv2 version v0.28.0

Description The issue is related to an out-of-bounds write in the BmffImage::brotliUncompress() function of the Exiv2 library, which can be triggered when reading the metadata of a crafted image file. This could potentially allow a remote attacker to execute arbitrary code if they can trick the victim into running Exiv2 on a maliciously crafted image file.

Recommendations For Exiv2 version v0.28.0, upgrade to version v0.28.1 to fix the issue. As a temporary workaround, consider avoiding the use of the BmffImage::brotliUncompress() function until the patch is applied. Restrict access to crafted image files to minimize the risk of exploitation.

Exploit

Fix

Heap Based Buffer Overflow

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-122CWE-787

Related Identifiers

AZL-31939

AZL-36940

BDU:2023-07704

CVE-2023-44398

GHSA-HRW9-GGG3-3R4R

OPENSUSE-SU-2024:13403-1

PYSEC-2023-233

Affected Products

Exiv2

PT-2023-6829 · Exiv2 · Exiv2

CVE-2023-44398

Weakness Enumeration

Related Identifiers

Affected Products

References · 17