Medium severity6.5NVD Advisory· Published Aug 18, 2017· Updated Jun 17, 2026
CVE-2017-12957
CVE-2017-12957
Description
There is a heap-based buffer over-read in libexiv2 in Exiv2 0.26 that is triggered in the Exiv2::Image::io function in image.cpp. It will lead to remote denial of service.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- osv-coords2 versionspkg:rpm/opensuse/exiv2&distro=openSUSE%20Tumbleweedpkg:rpm/suse/exiv2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015
< 0.27.4-1.2+ 1 more
- (no CPE)range: < 0.27.4-1.2
- (no CPE)range: < 0.26-6.3.1
Patches
Vulnerability mechanics
References
1- bugzilla.redhat.com/show_bug.cginvdIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.