2678 matches found
Fedora 44 : mingw-exiv2 (2026-7f4c2d1a4e)
The remote Fedora 44 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-7f4c2d1a4e advisory. Update to exiv2-0.28.8. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...
[SECURITY] Fedora 44 Update: mingw-exiv2-0.28.8-1.fc44
MinGW Windows exiv2 library...
Fedora: Security Advisory (FEDORA-2026-5eb6f779c0)
The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory (FEDORA-2026-592e4238fa)
The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 42 Update: mingw-exiv2-0.28.8-1.fc42
MinGW Windows exiv2 library...
[SECURITY] Fedora 43 Update: mingw-exiv2-0.28.8-1.fc43
MinGW Windows exiv2 library...
Fedora 42 : mingw-exiv2 (2026-592e4238fa)
The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-592e4238fa advisory. Update to exiv2-0.28.8. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...
Fedora 43 : mingw-exiv2 (2026-5eb6f779c0)
The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-5eb6f779c0 advisory. Update to exiv2-0.28.8. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...
CLSA-2026-1775221560 exiv2: Fix of CVE-2026-27631
CVE-2026-27631: fix integer overflow in preview component of PSD image parser...
Amazon Linux 2023 : exiv2, exiv2-devel, exiv2-libs (ALAS2023-2026-1480)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1480 advisory. Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. Prior to version 0.28.8, an out-of-bounds read was found. The...
openSUSE 16 Security Update : exiv2 (openSUSE-SU-2026:20410-1)
The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20410-1 advisory. Update to exiv2 0.28.8: - CVE-2024-24826: out-of-bounds read in QuickTimeVideo: NikonTagsDecoder bsc1219870. - CVE-2024-25112: denial of service...
Security update for exiv2 (important)
openSUSE security update: security update for exiv2 ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20410-1 Rating: important References: bsc1219870 bsc1219871 bsc1227528 bsc1237347 bsc1248962 bsc1248963 bsc1259083 bsc1259084 bsc1259085...
OPENSUSE-SU-2026:20410-1 Security update for exiv2
This update for exiv2 fixes the following issues: Update to exiv2 0.28.8: - CVE-2024-24826: out-of-bounds read in QuickTimeVideo: NikonTagsDecoder bsc1219870. - CVE-2024-25112: denial of service due to unbounded recursion in QuickTimeVideo: multipleEntriesDecoder bsc1219871. - CVE-2024-39695:...
SUSE-SU-2026:20923-1 Security update for exiv2
This update for exiv2 fixes the following issues: Update to exiv2 0.28.8: - CVE-2024-24826: out-of-bounds read in QuickTimeVideo: NikonTagsDecoder bsc1219870. - CVE-2024-25112: denial of service due to unbounded recursion in QuickTimeVideo: multipleEntriesDecoder bsc1219871. - CVE-2024-39695:...
Ubuntu: Security Advisory (USN-8103-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-8103-2 exiv2 regression
USN-8103-1 fixed vulnerabilities in Exiv2. The update caused a regression for Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, Ubuntu 24.04 LTS and Ubuntu 25.10. This update fixes the problem. We apologize for the inconvenience. Original advisory details: It was discovered that Exiv2 did not correctly handle...
USN-8103-2: Exiv2 regression
USN-8103-1 fixed vulnerabilities in Exiv2. The update caused a regression for Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, Ubuntu 24.04 LTS and Ubuntu 25.10. This update fixes the problem. We apologize for the inconvenience. Original advisory details: It was discovered that Exiv2 did not correctly handle...
Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.10 : Exiv2 vulnerabilities (USN-8103-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8103-1 advisory. It was discovered that Exiv2 did not correctly handle reading certain buffers. An attacker could...
Important: exiv2
Issue Overview: Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. Prior to version 0.28.8, an out-of-bounds read was found. The vulnerability is in the CRW image parser. This issue has been patched in version 0.28.8...
Amazon Linux 2 : exiv2, --advisory ALAS2-2026-3201 (ALAS-2026-3201)
The version of exiv2 installed on the remote host is prior to 0.27.0-4. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2026-3201 advisory. Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata...