subject:"\[Pkg\-kde\-extras\] Bug#781123\: libexiv2\-13\: buffer overflow in RIFF video parser"

[Pkg-kde-extras] Bug#781123: libexiv2-13: buffer overflow in RIFF video parser

2015-08-10 Thread Jakub Wilk

* Jakub Wilk jw...@debian.org, 2015-03-24, 21:45: Exiv2 crashes on the attached file: $ exiv2 pr crash.riff *** Error in `exiv2': double free or corruption (!prev): 0x09669910 *** Aborted I can't reproduce it with exiv2_0.25-2: $ exiv2 pr crash.riff Exiv2 exception in print action for file

[Pkg-kde-extras] Bug#781123: libexiv2-13: buffer overflow in RIFF video parser

2015-03-24 Thread Jakub Wilk

Package: libexiv2-13 Version: 0.24-4.1 Tags: security Usertags: afl Exiv2 crashes on the attached file: $ exiv2 pr crash.riff *** Error in `exiv2': double free or corruption (!prev): 0x09669910 *** Aborted Valgrind says it's a buffer overflow: ==5509== Invalid write of size 4 ==5509==at