Lucene search
K

12 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2019-13111

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A WebPImage::decodeChunks integer overflow in Exiv2 through 0.27.1 allows an attacker to cause a denial of service large heap allocation followed by a very long...

5.5CVSS6.4AI score0.00802EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:11 a.m.2 views

SUSE CVE-2019-13111

A WebPImage::decodeChunks integer overflow in Exiv2 through 0.27.1 allows an attacker to cause a denial of service large heap allocation followed by a very long running loop via a crafted WEBP image file...

4.3CVSS8.9AI score0.00802EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2022/11/08 12:0 a.m.30 views

SUSE SLED15: exiv2 / exiv2-lang / libexiv2-26 / libexiv2-26-32bit / etc (SUSE-SU-2022:3892-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3892-1 advisory. - CVE-2019-13111: Fixed nteger overflow in WebPImage:decodeChunks bsc1142679. - CVE-2021-29463:...

5.5CVSS6.9AI score0.01119EPSS
Exploits1References10
OpenVAS
OpenVAS
added 2022/11/08 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2022:3892-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS6.8AI score0.01119EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/11/08 12:0 a.m.29 views

SUSE SLED15: exiv2 / exiv2-lang / libexiv2-26 / libexiv2-26-32bit / libexiv2-27 / etc (SUSE-SU-2022:3889-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3889-1 advisory. Updated to version 0.27.5 jscPED-1393: - CVE-2017-1000128: Fixed stack out of bounds read in...

7.8CVSS6.8AI score0.02152EPSS
Exploits3References45
OpenVAS
OpenVAS
added 2022/11/08 12:0 a.m.30 views

SUSE: Security Advisory (SUSE-SU-2022:3889-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.5AI score0.02152EPSS
Exploits3References2
Mageia
Mageia
added 2020/05/05 12:20 p.m.39 views

Updated exiv2 packages fix security vulnerability

The updated packages fix a security vulnerability: A WebPImage::decodeChunks integer overflow in Exiv2 through 0.27.1 allows an attacker to cause a denial of service large heap allocation followed by a very long running loop via a crafted WEBP image file. CVE-2019-13111...

5.5CVSS3.1AI score0.00802EPSS
Exploits1References2
OSV
OSV
added 2020/04/28 8:52 a.m.30 views

ALSA-2020:1577 Moderate: exiv2 security, bug fix, and enhancement update

The exiv2 packages provide a command line utility which can display and manipulate image metadata such as EXIF, LPTC, and JPEG comments. The following packages have been upgraded to a later upstream version: exiv2 0.27.2. BZ1651917 Security Fixes: exiv2: infinite loop and hang in...

8.8CVSS7.5AI score0.04296EPSS
Exploits26References30
AlmaLinux
AlmaLinux
added 2020/04/28 8:52 a.m.83 views

Moderate: exiv2 security, bug fix, and enhancement update

The exiv2 packages provide a command line utility which can display and manipulate image metadata such as EXIF, LPTC, and JPEG comments. The following packages have been upgraded to a later upstream version: exiv2 0.27.2. BZ1651917 Security Fixes: exiv2: infinite loop and hang in...

8.8CVSS7.5AI score0.04296EPSS
Exploits26References30
OSV
OSV
added 2019/06/30 11:15 p.m.25 views

CVE-2019-13111

A WebPImage::decodeChunks integer overflow in Exiv2 through 0.27.1 allows an attacker to cause a denial of service large heap allocation followed by a very long running loop via a crafted WEBP image file...

5.5CVSS2.9AI score
Exploits0References3
Debian CVE
Debian CVE
added 2019/06/30 10:20 p.m.21 views

CVE-2019-13111

A WebPImage::decodeChunks integer overflow in Exiv2 through 0.27.1 allows an attacker to cause a denial of service large heap allocation followed by a very long running loop via a crafted WEBP image file...

5.5CVSS6.1AI score0.00802EPSS
Exploits1
CVE
CVE
added 2019/06/30 10:20 p.m.188 views

CVE-2019-13111

Exiv2 vulnerability CVE-2019-13111: WebPImage::decodeChunks contains an integer overflow that can cause denial of service when processing a crafted WEBP image. Affected in Exiv2 up to 0.27.1; mitigated in later releases (e.g., 0.27.5 per SUSE advisories).

5.5CVSS5.7AI score0.00802EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder