CVE-2014-9449

EPSS 1.3%

發布日:2015/1/2修改日:2026/4/28

描述

Buffer overflow in the RiffVideo::infoTagsHandler function in riffvideo.cpp in Exiv2 0.24 allows remote attackers to cause a denial of service (crash) via a long IKEY INFO tag value in an AVI file.

受影響套件(1)

Debian/exiv2from 0, < 0.24-4.1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-9449