CVE-2018-10999 (retired)

Priority
Description
An issue was discovered in Exiv2 0.26. The
Exiv2::Internal::PngChunk::parseTXTChunk function has a heap-based buffer
over-read.
Notes
Package
Source: exiv2 (LP Ubuntu Debian)
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 16.04 LTS (Xenial Xerus):released (0.25-2.1ubuntu16.04.2)
Ubuntu 18.04 LTS (Bionic Beaver):released (0.25-3.1ubuntu0.18.04.1)
More Information

Updated: 2019-10-09 08:02:46 UTC (commit 33aea848a182c0afcd0a3f927a01a7ecd9a061ee)