CVE-2017-18005

CVE-2017-18005

EPSS 0.8%

Exiv2 0.26 has a Null Pointer Dereference in the Exiv2::DataValue::toLong function in value.cpp, related to crafted metadata in a TIFF file.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/Exiv2/exiv2/issues/168 https://lists.debian.org/debian-lts-announce/2023/01/msg00004.html