Closed NigelX closed 3 years ago
i added a null length string check to avoid dereferencing NULL ptr.
I currently would not classify this as security issue.
So I am currently not seeing security impact and would not request a CVE.
I currently would not classify this as security issue.
* the crash is caused by a NULL ptr deref, so no other memory corruption * the output of exif is not corrupted for followup issues * exif the program terminates anyway, so it is not causing a denial of service.
So I am currently not seeing security impact and would not request a CVE.
@msmeissn it looks still someone has requested a CVE, it has https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27815 (shoult it then be disputed?)
I at least filed a description update. I think availability impact can be classified low, so we can leave it valid.
Availability impact: Low Confidentiality impact: None Integrity impact: None
Project: exif system: ubuntu 20.04 Fuzzer: afl_exif_out_xml poc.zip
Command:
asan
gdb
HX from Topsec alpha Security Team