CVE-2026-14454
Received Received - Intake

Memory Corruption in Perl Imager via Malformed EXIF Data

Vulnerability report for CVE-2026-14454, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-07-08

Last updated on: 2026-07-08

Assigner: CPANSec

Description

Imager versions before 1.033 for Perl treat unsigned EXIF IFD entry counts as signed. Imager mishandled large EXIF IFD entry count values, treating them as negative numbers. This could lead to an attempt to allocate a block nearly the size of the address space, which fails and kills the process. An attacker could craft an image with EXIF data that terminates a worker process.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-07-08
Last Modified
2026-07-08
Generated
2026-07-08
AI Q&A
2026-07-08
EPSS Evaluated
N/A
NVD
EUVD

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
tonycoz imager to 1.033 (exc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-789 The product allocates memory based on an untrusted, large size value, but it does not ensure that the size is within expected limits, allowing arbitrary amounts of memory to be allocated.
CWE-196 The product uses an unsigned primitive and performs a cast to a signed primitive, which can produce an unexpected value if the value of the unsigned primitive can not be represented using a signed primitive.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability exists in versions of the Imager library for Perl before 1.033. It occurs because the software incorrectly treats unsigned EXIF IFD entry counts as signed integers. This mishandling causes large EXIF IFD entry count values to be interpreted as negative numbers.

As a result, when processing crafted images with malformed EXIF data, the software may attempt to allocate an extremely large block of memory, nearly the size of the address space. This allocation fails and causes the process to terminate unexpectedly.

An attacker can exploit this by crafting an image with malicious EXIF data designed to trigger this behavior, effectively terminating a worker process that uses the Imager library.

The underlying technical issue is an index wrap bug in the EXIF parsing code, which can lead to memory corruption or undefined behavior when handling malformed EXIF data. The vulnerability was addressed by fixing this bug and improving the robustness of the EXIF parser.

Impact Analysis

This vulnerability can impact you by allowing an attacker to cause denial of service (DoS) on applications or services that use the vulnerable Imager library to process images.

Specifically, by crafting an image with malicious EXIF data, an attacker can cause the process handling the image to crash or terminate unexpectedly. This can disrupt normal operations, reduce availability, and potentially affect user experience or service reliability.

Detection Guidance

This vulnerability involves the Imager library's EXIF parsing functionality mishandling large EXIF IFD entry counts, which can cause process crashes when processing crafted images.

To detect exploitation attempts or presence of this vulnerability, you can monitor for crashes or abnormal termination of worker processes that use the Imager library to process images.

Since the issue is triggered by malformed EXIF data, scanning image files for unusually large or malformed EXIF IFD entry counts could help identify potentially malicious files.

Specific commands are not provided in the available resources, but general approaches include:

  • Using system logs (e.g., `journalctl` or application logs) to detect crashes related to image processing.
  • Using file inspection tools like `exiftool` to analyze EXIF data in images and identify suspiciously large or malformed EXIF IFD entry counts.
  • Monitoring processes that use the Imager library for unexpected termination or crashes.
Mitigation Strategies

The primary mitigation step is to update the Imager library to version 1.033 or later, where the vulnerability has been fixed by correcting the EXIF parsing logic and adding robustness against malformed EXIF data.

If updating immediately is not possible, consider restricting or sanitizing image inputs to avoid processing images with potentially malicious EXIF data.

Additionally, monitor and restart any worker processes that crash due to this issue to maintain service availability.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-14454. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart