samples/geotag.cpp in the example code of Exiv2 0.26 misuses the realpath function on POSIX platforms (other than Apple platforms) where glibc is not used, possibly leading to a buffer overflow.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2018-07-17T12:00:00Z

Updated: 2024-09-16T18:55:29.781Z

Reserved: 2018-07-17T00:00:00Z

Link: CVE-2018-14338

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-07-17T12:29:00.293

Modified: 2024-11-21T03:48:51.160

Link: CVE-2018-14338

cve-icon Redhat

Severity : Low

Publid Date: 2018-07-14T00:00:00Z

Links: CVE-2018-14338 - Bugzilla