CVE-2017-18233
Description
Integer overflow in Exempi before 2.4.4 allows denial of service via crafted .avi file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Integer overflow in Exempi before 2.4.4 allows denial of service via crafted .avi file.
Vulnerability
An integer overflow vulnerability exists in the Chunk class in XMPFiles/source/FormatSupport/RIFF.cpp of Exempi versions before 2.4.4. The flaw can be triggered when processing specially crafted XMP data within a .avi file, leading to an infinite loop and denial of service.
Exploitation
An attacker can exploit this issue by providing a malformed .avi file containing crafted XMP metadata. If a user or automated system processes the file using an affected version of Exempi, the integer overflow occurs, causing the software to enter an infinite loop. No authentication or special network position is required; the attack vector is local or via a remotely supplied file.
Impact
Successful exploitation results in a denial of service, as the affected software hangs or crashes. The vulnerability is limited to causing a hang (infinite loop) and does not enable arbitrary code execution or information disclosure. The impact is limited to availability.
Mitigation
The issue is fixed in Exempi version 2.4.4. Red Hat Enterprise Linux users can apply the update via RHSA-2019:2048 [1]. Ubuntu users can apply the update provided in USN-3668-1 [2]. Upgrading to the patched version is the recommended mitigation. No workarounds are detailed in available references.
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
5- osv-coords4 versionspkg:rpm/suse/exempi&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP3pkg:rpm/suse/exempi&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3pkg:rpm/suse/exempi&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3pkg:rpm/suse/exempi&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3
< 2.2.1-5.7.1+ 3 more
- (no CPE)range: < 2.2.1-5.7.1
- (no CPE)range: < 2.2.1-5.7.1
- (no CPE)range: < 2.2.1-5.7.1
- (no CPE)range: < 2.2.1-5.7.1
Patches
0No patches discovered yet.
Vulnerability mechanics
Root cause
"An integer overflow in the Chunk class allows for an infinite loop when processing crafted XMP data."
Attack vector
A remote attacker can cause a denial of service by providing a crafted .avi file containing malicious XMP data. This data triggers an integer overflow in the Chunk class, leading to an infinite loop within the Exempi library. The vulnerability is located in the RIFF.cpp file within the XMPFiles/source/FormatSupport directory [ref_id=1].
Affected code
The vulnerability resides in the Chunk class within the file XMPFiles/source/FormatSupport/RIFF.cpp. Specifically, the issue is related to how crafted XMP data in .avi files is processed, leading to an integer overflow and subsequent infinite loop [ref_id=1].
What the fix does
The advisory indicates that an update for Exempi is available to address this vulnerability [ref_id=1]. The specific details of the patch are not provided in the advisory, but it is intended to correct the integer overflow in the Chunk class that leads to the infinite loop.
Preconditions
- inputThe attacker must provide a crafted .avi file containing malicious XMP data.
Generated on Jun 3, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
5- access.redhat.com/errata/RHSA-2019:2048mitrevendor-advisoryx_refsource_REDHAT
- usn.ubuntu.com/3668-1/mitrevendor-advisoryx_refsource_UBUNTU
- bugs.freedesktop.org/show_bug.cgimitrex_refsource_CONFIRM
- cgit.freedesktop.org/exempi/commit/mitrex_refsource_CONFIRM
- lists.debian.org/debian-lts-announce/2018/03/msg00013.htmlmitremailing-listx_refsource_MLIST
News mentions
0No linked articles in our index yet.