CVE-2017-9239
medium
CVSS v3
6.5
CVSS v2
4.3
VIR risk
6.5
Description
An issue was discovered in Exiv2 0.26. When the data structure of the structure ifd is incorrect, the program assigns pValue_ to 0x0, and the value of pValue() is 0x0. TiffImageEntry::doWriteImage will use the value of pValue() to cause a segmentation fault. To exploit this vulnerability, someone must open a crafted tiff file.
Predictions
Exploit likelihood
75%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2017-9239
Vendor advisory: suse — https://www.suse.com/security/cve/CVE-2017-9239.html
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| sles | affected | | |
| debian | bookworm | fixed | 0.25-3.1 |
| debian | bullseye | fixed | 0.25-3.1 |
| debian | forky | fixed | 0.25-3.1 |
| debian | sid | fixed | 0.25-3.1 |
| debian | trixie | fixed | 0.25-3.1 |
| ubuntu | 14.04 | affected | |
| ubuntu | 16.04 | affected | |
| ubuntu | 18.04 | affected | |
| ubuntu | 18.10 | affected | |
Package impact
| Ecosystem | Package | Vulnerable | Fixed |
|---|---|---|---|
| PyPI | exiv2 | | |
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| exiv2 | exiv2 | 0.26 | |
References
- http://dev.exiv2.org/issues/1295
- http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00009.html
- http://www.securityfocus.com/bid/98720
- https://github.com/lolo-pop/poc/tree/master/Segmentation%20fault%20in%20convert-test%28exiv2%29
- https://usn.ubuntu.com/3852-1/
- https://www.suse.com/security/cve/CVE-2017-9239.html
- https://security-tracker.debian.org/tracker/CVE-2017-9239
CWEs
CWE-369
Verify integrity in audit chain (admin only). AS-IS.