Lucene search
K

23 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2017-11591

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There is a Floating point exception in the Exiv2::ValueType function in Exiv2 0.26 that will lead to a remote denial of service attack via crafted input...

7.5CVSS6.7AI score0.03098EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/10/20 12:0 a.m.33 views

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : Exiv2 vulnerabilities (USN-3852-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3852-1 advisory. It was discovered that Exiv2 incorrectly handled certain files. An attacker could possibly use this issue to cause a denial of...

7.5CVSS6.3AI score0.03098EPSS
Exploits6References10
Tenable Nessus
Tenable Nessus
added 2023/01/11 12:0 a.m.29 views

Debian dla-3265 : exiv2 - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3265 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3265-1 [email protected]...

8.1CVSS6.7AI score0.03098EPSS
Exploits19References54
Debian
Debian
added 2023/01/10 5:2 p.m.36 views

[SECURITY] [DLA 3265-1] exiv2 security update

Debian LTS Advisory DLA-3265-1 [email protected] https://www.debian.org/lts/security/ Helmut Grohne January 10, 2023 https://wiki.debian.org/LTS Package : exiv2 Version : 0.25-4+deb10u4 CVE ID : CVE-2017-11591 CVE-2017-14859 CVE-2017-14862 CVE-2017-14864 CVE-2017-17669 CVE-2017-18005...

8.1CVSS6.8AI score0.03098EPSS
Exploits19
Tenable Nessus
Tenable Nessus
added 2022/11/30 12:0 a.m.33 views

SUSE SLED15: exiv2 / exiv2-lang / libexiv2-26 / libexiv2-26-32bit / etc (SUSE-SU-2022:4276-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:4276-1 advisory. - CVE-2019-13110: Fixed an integer-overflow and out-of-bounds read in CiffDirectory:readDirector...

9.8CVSS6.9AI score0.03098EPSS
Exploits8References34
Tenable Nessus
Tenable Nessus
added 2022/11/24 12:0 a.m.41 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : exiv2-0_26 (SUSE-SU-2022:4208-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:4208-1 advisory. - CVE-2019-17402: Fixed improper validation of the total size to the offset and size leads to a...

9.8CVSS6.9AI score0.03098EPSS
Exploits8References34
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.27 views

Mageia: Security Advisory (MGASA-2017-0391)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.8AI score0.03098EPSS
Exploits8References5
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2018:3882-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.2AI score0.03098EPSS
Exploits8References12
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2018:3882-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.2AI score0.03098EPSS
Exploits8References12
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.32 views

Huawei EulerOS: Security Advisory for exiv2 (EulerOS-SA-2019-2375)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7AI score0.03098EPSS
Exploits15References2
Tenable Nessus
Tenable Nessus
added 2019/03/27 12:0 a.m.33 views

openSUSE Security Update : exiv2 (openSUSE-2019-504)

This update for exiv2 to 0.26 fixes the following security issues : - CVE-2017-14864: Prevent invalid memory address dereference in Exiv2::getULong that could have caused a segmentation fault and application crash, which leads to denial of service bsc1060995. - CVE-2017-14862: Prevent invalid...

8.8CVSS6.7AI score0.03098EPSS
Exploits7References25
Tenable Nessus
Tenable Nessus
added 2018/12/13 12:0 a.m.32 views

SUSE SLED12 / SLES12 Security Update : exiv2 (SUSE-SU-2018:3882-2)

This update for exiv2 fixes the following issues : CVE-2017-11591: A floating point exception in the Exiv2::ValueType function could lead to a remote denial of service attack via crafted input. bsc1050257 CVE-2017-14864: An invalid memory address dereference was discovered in Exiv2::getULong in...

9.8CVSS6.9AI score0.03098EPSS
Exploits8References28
Tenable Nessus
Tenable Nessus
added 2018/11/26 12:0 a.m.28 views

SUSE SLED12 / SLES12 Security Update : exiv2 (SUSE-SU-2018:3882-1)

This update for exiv2 fixes the following issues : CVE-2017-11591: A floating point exception in the Exiv2::ValueType function could lead to a remote denial of service attack via crafted input. bsc1050257 CVE-2017-14864: An invalid memory address dereference was discovered in Exiv2::getULong in...

9.8CVSS6.9AI score0.03098EPSS
Exploits8References28
OSV
OSV
added 2018/11/23 4:9 p.m.6 views

SUSE-SU-2018:3882-1 Security update for exiv2

This update for exiv2 fixes the following issues: - CVE-2017-11591: A floating point exception in the Exiv2::ValueType function could lead to a remote denial of service attack via crafted input. bsc1050257 - CVE-2017-14864: An invalid memory address dereference was discovered in Exiv2::getULong i...

9.8CVSS6.6AI score0.03098EPSS
Exploits8References19
Tenable Nessus
Tenable Nessus
added 2018/07/16 12:0 a.m.28 views

openSUSE Security Update : exiv2 (openSUSE-2018-727)

This update for exiv2 to 0.26 fixes the following security issues : - CVE-2017-14864: Prevent invalid memory address dereference in Exiv2::getULong that could have caused a segmentation fault and application crash, which leads to denial of service bsc1060995. - CVE-2017-14862: Prevent invalid...

8.8CVSS6.7AI score0.03098EPSS
Exploits7References25
OPENSUSE Linux
OPENSUSE Linux
added 2018/07/14 3:9 a.m.51 views

Security update for exiv2 (moderate)

This update for exiv2 to 0.26 fixes the following security issues: - CVE-2017-14864: Prevent invalid memory address dereference in Exiv2::getULong that could have caused a segmentation fault and application crash, which leads to denial of service bsc1060995. - CVE-2017-14862: Prevent invalid memo...

6.8CVSS2.6AI score0.03098EPSS
Exploits7References10
OpenVAS
OpenVAS
added 2018/02/06 12:0 a.m.30 views

Debian: Security Advisory (DLA-1147-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.4AI score0.03098EPSS
Exploits4References3
Tenable Nessus
Tenable Nessus
added 2017/10/27 12:0 a.m.32 views

Debian DLA-1147-1 : exiv2 security update

The exiv2 library is vulnerable to multiple issues that can all lead to denial of service of the applications relying on the library to parse images' metadata. CVE-2017-11591 Denial of service via floating point exception in the Exiv2::ValueType function. CVE-2017-11683 Denial of service through...

7.5CVSS6.4AI score0.03098EPSS
Exploits4References7
Debian
Debian
added 2017/10/26 5:13 p.m.32 views

[SECURITY] [DLA 1147-1] exiv2 security update

Package : exiv2 Version : 0.23-1+deb7u2 CVE ID : CVE-2017-11591 CVE-2017-11683 CVE-2017-14859 CVE-2017-14862 CVE-2017-14864 Debian Bug : 876893 The exiv2 library is vulnerable to multiple issues that can all lead to denial of service of the applications relying on the library to parse images...

7.5CVSS7AI score0.03098EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2017/10/23 12:0 a.m.38 views

openSUSE Security Update : exiv2 (openSUSE-2017-1180)

This update for exiv2 fixes the following issues : Security issues fixed : - CVE-2017-11591: There is a Floating point exception in the Exiv2::ValueType function in Exiv2 0.26 that will lead to a remote denial of service attack via crafted input. boo1050257 - CVE-2017-11683: There is a reachable...

7.5CVSS6.6AI score0.03098EPSS
Exploits3References10
Rows per page
Query Builder