Lucene search
UbuntuUSN-2454-1HistoryJan 07, 2015 - 12:00 a.m.
Exiv2 vulnerability
2015-01-0700:00:00
ubuntu.com
32
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
6.6
Confidence
Low
EPSS
0.028
Percentile
90.9%
Releases
- Ubuntu 14.10
Packages
- exiv2 - EXIF/IPTC metadata manipulation tool
Details
It was discovered that Exiv2 incorrectly handled certain tag values in
video files. If a user or automated system were tricked into opening a
specially-crafted video file, a remote attacker could cause Exiv2 to crash,
resulting in a denial of service.
References
Related
nessus
nessus
Ubuntu 14.10 : exiv2 vulnerability (USN-2454-1)
2015-01-08 00:00:00
GLSA-201507-03 : Exiv2: Denial of Service
2015-07-08 00:00:00
Fedora 21 : exiv2-0.24-4.fc21 (2015-0301)
2015-01-22 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-2454-1)
2015-01-23 00:00:00
Gentoo Security Advisory GLSA 201507-03
2015-09-29 00:00:00
Fedora Update for exiv2 FEDORA-2015-0301
2015-01-22 00:00:00
nvd
nvd
CVE-2014-9449
2015-01-02 20:59:08
cvelist
cvelist
CVE-2014-9449
2015-01-02 20:00:00
gentoo
gentoo
Exiv2: Denial of service
2015-07-07 00:00:00
securityvulns
securityvulns
exivw library DoS
2015-01-13 00:00:00
[USN-2454-1] Exiv2 vulnerability
2015-01-13 00:00:00
debiancve
debiancve
CVE-2014-9449
2015-01-02 20:59:08
prion
prion
Buffer overflow
2015-01-02 20:59:00
fedora
fedora
[SECURITY] Fedora 21 Update: exiv2-0.24-4.fc21
2015-01-21 22:59:29
ubuntucve
ubuntucve
CVE-2014-9449
2015-01-02 00:00:00
cve
cve
CVE-2014-9449
2015-01-02 20:59:08
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
6.6
Confidence
Low
EPSS
0.028
Percentile
90.9%
Related for USN-2454-1