High severity8.8NVD Advisory· Published Aug 18, 2017· Updated Jun 17, 2026
CVE-2017-12955
CVE-2017-12955
Description
There is a heap-based buffer overflow in basicio.cpp of Exiv2 0.26. The vulnerability causes an out-of-bounds write in Exiv2::Image::printIFDStructure(), which may lead to remote denial of service or possibly unspecified other impact.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- osv-coords2 versionspkg:rpm/opensuse/exiv2&distro=openSUSE%20Tumbleweedpkg:rpm/suse/exiv2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015
< 0.27.4-1.2+ 1 more
- (no CPE)range: < 0.27.4-1.2
- (no CPE)range: < 0.26-6.3.1
Patches
Vulnerability mechanics
References
1- bugzilla.redhat.com/show_bug.cginvdIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.