In Jp2Image::readMetadata() in jp2image.cpp in Exiv2 0.27.2, an input file can result in an infinite loop and hang, with high CPU consumption. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted file.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2020-01-27T04:22:10

Updated: 2024-08-05T02:39:09.878Z

Reserved: 2020-01-27T00:00:00

Link: CVE-2019-20421

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-01-27T05:15:10.453

Modified: 2024-11-21T04:38:25.993

Link: CVE-2019-20421

cve-icon Redhat

Severity : Moderate

Publid Date: 2019-09-30T00:00:00Z

Links: CVE-2019-20421 - Bugzilla