Description - During our research ,we Observed that an infinite uncontrolled recursion loop, at function Exiv2::(anonymous namespace)::BigTiffImage::printIFD( ) located in bigtiffimage.cpp . It allows an attacker to cause Denial of Service or possibly have unspecified other impact. Command - exiv2 -b -u -k -p R pr $POC POC - REPRODUCER Debug - GDB -
This issue is solved in 0.27 and master since the action -pR was disabled when compiling the project in Release mode:
$ ./exiv2 -b -u -k -p R pr /f/datasets/
exiv2.exe: Action not available in Rele
Usage: exiv2.exe [ options ] [ action ]
Manipulate the Exif metadata of images.
Therefore I'll close the issue (feel free to re-open it if you think this needs further discussion).
Description - During our research ,we Observed that an infinite uncontrolled recursion loop, at function
Exiv2::(anonymous namespace)::BigTiffImage::printIFD() located inbigtiffimage.cpp. It allows an attacker to cause Denial of Service or possibly have unspecified other impact.Command - exiv2 -b -u -k -p R pr $POC
POC - REPRODUCER
Debug -
GDB -
The text was updated successfully, but these errors were encountered: