CVE-2021-27815 log
| Source |
|
| Severity | Low |
| Remote | No |
| Type | Denial of service |
| Description | A NULL pointer deference in the exif command line tool, when printing out XML formatted EXIF data, in exif v0.6.22 and earlier allows attackers to cause a Denial of Service (DoS) by uploading a malicious JPEG file, causing the application to crash. |
| Group | Package | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|---|
| AVG-1824 | libexif | 0.6.22-1 | Low | Not affected |
| References |
|---|
https://github.com/libexif/exif/issues/4 https://github.com/libexif/exif/files/6041133/poc.zip https://github.com/libexif/exif/commit/f6334d9d32437ef13dc902f0a88a2be0063d9d1c |