OSV-2020-1274

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/libexif/OSV-2020-1274.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2020-1274
Published
2020-07-22T21:50:02.388928Z
Modified
2022-04-13T03:04:40.847318Z
Summary
Heap-buffer-overflow in exif_entry_get_value
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=14543

Crash type: Heap-buffer-overflow READ 7
Crash state:
exif_entry_get_value
content_func
exif_content_foreach_entry
References

Affected packages

OSS-Fuzz / libexif

Package

Name
libexif
Purl
pkg:generic/libexif

Affected ranges

Type
GIT
Repo
https://github.com/libexif/libexif
Events
Introduced
3f35f94a93081ced2bc3c9112f820f5fdb200af0
Fixed
f9bb9f263fb00f0603ecbefa8957cad24168cbff

Ecosystem specific 

{
    "severity": "MEDIUM",
    "introduced_range": "unknown:3f35f94a93081ced2bc3c9112f820f5fdb200af0"
}