CVE-2017-17723

Priority
Description
In Exiv2 0.26, there is a heap-based buffer over-read in the
Exiv2::Image::byteSwap4 function in image.cpp. Remote attackers can exploit
this vulnerability to disclose memory data or cause a denial of service via
a crafted TIFF file.
Notes
 mdeslaur> first commit same as CVE-2017-11591
More Information

Updated: 2019-01-14 21:25:12 UTC (commit 51f9b73af244ba86b9321e46e526586c25a8e060)