Denial of Service Vulnerability in libexif Affects Multiple Platforms
CVE-2012-2837

Currently unrated

Key Information:

Vendor: Libexif Project
Status: Libexif
Vendor: CVE Published:; 13 July 2012

🔔 Create Libexif Project Vulnerability Alert

What is CVE-2012-2837?

A vulnerability in the image processing library libexif allows attackers to trigger a denial of service condition. This occurs through crafted EXIF tags in images that are not handled correctly, potentially leading to a divide-by-zero error in the mnote_olympus_entry_get_value function. Such exploitation can crash applications reliant on the library, affecting multiple platforms and potentially leading to significant disruptions in service.

References

http://www.securityfocus.com/bid/54437

vdb-entryx_refsource_BID

http://www.debian.org/security/2012/dsa-2559

vendor-advisoryx_refsource_DEBIAN

http://lists.opensuse.org/opensuse-security-announce/2012...

vendor-advisoryx_refsource_SUSE

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 13, 2012
Vulnerability Reserved
May 19, 2012

CVE-2012-2837 Data

JSON