Amazon Linux 2023 : exiv2, exiv2-devel, exiv2-libs (ALAS2023-2026-1480)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1480 advisory. Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. Prior to version 0.28.8, an out-of-bounds read was found. The...

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.10 : Exiv2 vulnerabilities (USN-8103-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8103-1 advisory. It was discovered that Exiv2 did not correctly handle reading certain buffers. An attacker could...

USN-8103-1 exiv2 vulnerabilities

It was discovered that Exiv2 did not correctly handle reading certain buffers. An attacker could possibly use this issue to leak sensitive information. This issue only affected Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. CVE-2020-18771 Wen Cheng discovered that Exiv2 did not correctly handle certain...

USN-8103-1: Exiv2 vulnerabilities

It was discovered that Exiv2 did not correctly handle reading certain buffers. An attacker could possibly use this issue to leak sensitive information. This issue only affected Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. CVE-2020-18771 Wen Cheng discovered that Exiv2 did not correctly handle certain...

MiracleLinux 8 : exiv2-0.27.4-5.el8 (AXSA:2021-2752:04)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2752:04 advisory. exiv2: Heap-based buffer overflow in Jp2Image::readMetadata CVE-2021-3482 exiv2: Heap-based buffer overflow in Exiv2::Jp2Image::doWriteMetadata...

MiracleLinux 8 : exiv2-0.27.2-5.el8, gegl-0.2.0-39.el8, gnome-color-manager-3.28.0-3.el8, libgexiv2-0.10.8-4.el8 (AXSA:2020-556:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-556:01 advisory. exiv2: infinite loop and hang in Jp2Image::readMetadata in jp2image.cpp could lead to DoS CVE-2019-20421 exiv2: null pointer dereference in the...

Alibaba Cloud Linux 3 : 0065: exiv2 (ALINUX3-SA-2021:0065)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2021:0065 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2019-17402: Exiv2 0.27.2 allows attackers to...

Alibaba Cloud Linux 3 : 0215: exiv2 (ALINUX3-SA-2022:0215)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2022:0215 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2020-18898: A stack exhaustion issue i...

SUSE-SU-2022:4252-1 Security update for exiv2

This update for exiv2 fixes the following issues: - CVE-2019-13112: Fixed an uncontrolled memory allocation in PngChunk:parseChunkContent causing denial of service. bsc1142681 - CVE-2021-37620: Fixed out-of-bounds read in XmpTextValue:read. bsc1189332 - CVE-2021-34334: Fixed a DoS due to integer...

SUSE-SU-2022:4208-1 Security update for exiv2-0_26

This update for exiv2-026 fixes the following issues: - CVE-2019-17402: Fixed improper validation of the total size to the offset and size leads to a crash in Exiv2::getULong in types.cpp bsc1153577. - CVE-2018-20098: Fixed a heap-based buffer over-read in Exiv2::Jp2Image::encodeJp2Header...

SUSE-SU-2022:3892-1 Security update for exiv2

This update for exiv2 fixes the following issues: - CVE-2019-13111: Fixed nteger overflow in WebPImage:decodeChunks bsc1142679. - CVE-2021-29463: Fixed out-of-bounds read bsc1185913. - CVE-2021-34334: Fixed a DoS due to integer overflow in loop counter bug bsc1189338...

USN-4964-1 exiv2 vulnerabilities

It was discovered that Exiv2 incorrectly handled certain files. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 20.04 LTS, Ubuntu 20.10 and Ubuntu 21.04. CVE-2021-29463 It was discovered that Exiv2 incorrectly handled certain files. An...

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : Exiv2 vulnerabilities (USN-3700-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3700-1 advisory. It was discovered that Exiv2 incorrectly handled certain files. An attacker could possibly use this to cause a denial of service...

Ubuntu Update for exiv2 vulnerabilities USN-655-1

Ubuntu Update for Linux kernel vulnerabilities USN-655-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN6551.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for exiv2 vulnerabilities USN-655-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...