Lucene search
K

16 matches found

Tenable Nessus
Tenable Nessus
added 2023/10/20 12:0 a.m.33 views

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : Exiv2 vulnerabilities (USN-3852-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3852-1 advisory. It was discovered that Exiv2 incorrectly handled certain files. An attacker could possibly use this issue to cause a denial of...

7.5CVSS6.3AI score0.03098EPSS
Exploits6References10
Debian
Debian
added 2023/01/10 5:2 p.m.36 views

[SECURITY] [DLA 3265-1] exiv2 security update

Debian LTS Advisory DLA-3265-1 [email protected] https://www.debian.org/lts/security/ Helmut Grohne January 10, 2023 https://wiki.debian.org/LTS Package : exiv2 Version : 0.25-4+deb10u4 CVE ID : CVE-2017-11591 CVE-2017-14859 CVE-2017-14862 CVE-2017-14864 CVE-2017-17669 CVE-2017-18005...

8.1CVSS6.8AI score0.03098EPSS
Exploits19
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2018:3882-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.2AI score0.03098EPSS
Exploits8References12
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2018:3882-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.2AI score0.03098EPSS
Exploits8References12
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.24 views

Huawei EulerOS: Security Advisory for exiv2 (EulerOS-SA-2019-2710)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.9AI score0.0273EPSS
Exploits7References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.32 views

Huawei EulerOS: Security Advisory for exiv2 (EulerOS-SA-2019-2375)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7AI score0.03098EPSS
Exploits15References2
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.44 views

Fedora 28 : exiv2 (2018-8b67a5c7e2)

Exiv2 update with security fixes. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...

8.8CVSS6.5AI score0.02891EPSS
Exploits10References11
Tenable Nessus
Tenable Nessus
added 2018/12/13 12:0 a.m.32 views

SUSE SLED12 / SLES12 Security Update : exiv2 (SUSE-SU-2018:3882-2)

This update for exiv2 fixes the following issues : CVE-2017-11591: A floating point exception in the Exiv2::ValueType function could lead to a remote denial of service attack via crafted input. bsc1050257 CVE-2017-14864: An invalid memory address dereference was discovered in Exiv2::getULong in...

9.8CVSS6.9AI score0.03098EPSS
Exploits8References28
Tenable Nessus
Tenable Nessus
added 2018/11/26 12:0 a.m.28 views

SUSE SLED12 / SLES12 Security Update : exiv2 (SUSE-SU-2018:3882-1)

This update for exiv2 fixes the following issues : CVE-2017-11591: A floating point exception in the Exiv2::ValueType function could lead to a remote denial of service attack via crafted input. bsc1050257 CVE-2017-14864: An invalid memory address dereference was discovered in Exiv2::getULong in...

9.8CVSS6.9AI score0.03098EPSS
Exploits8References28
OSV
OSV
added 2018/11/23 4:9 p.m.6 views

SUSE-SU-2018:3882-1 Security update for exiv2

This update for exiv2 fixes the following issues: - CVE-2017-11591: A floating point exception in the Exiv2::ValueType function could lead to a remote denial of service attack via crafted input. bsc1050257 - CVE-2017-14864: An invalid memory address dereference was discovered in Exiv2::getULong i...

9.8CVSS6.6AI score0.03098EPSS
Exploits8References19
OpenVAS
OpenVAS
added 2018/08/10 12:0 a.m.37 views

Fedora Update for exiv2 FEDORA-2018-871fa4d189

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.2AI score0.0296EPSS
Exploits16References2
RedhatCVE
RedhatCVE
added 2017/12/14 5:21 p.m.36 views

CVE-2017-17669

There is a heap-based buffer over-read in the Exiv2::Internal::PngChunk::keyTXTChunk function of pngchunkint.cpp in Exiv2 0.26. A crafted PNG file will lead to a remote denial of service attack...

5.5CVSS3.7AI score0.01598EPSS
Exploits1References1
NVD
NVD
added 2017/12/13 10:29 p.m.19 views

CVE-2017-17669

There is a heap-based buffer over-read in the Exiv2::Internal::PngChunk::keyTXTChunk function of pngchunkint.cpp in Exiv2 0.26. A crafted PNG file will lead to a remote denial of service attack...

5.5CVSS6.2AI score0.01598EPSS
Exploits1References3
OSV
OSV
added 2017/12/13 10:29 p.m.25 views

CVE-2017-17669

There is a heap-based buffer over-read in the Exiv2::Internal::PngChunk::keyTXTChunk function of pngchunkint.cpp in Exiv2 0.26. A crafted PNG file will lead to a remote denial of service attack...

5.5CVSS6.8AI score
Exploits0References3
UbuntuCve
UbuntuCve
added 2017/12/13 12:0 a.m.27 views

CVE-2017-17669

There is a heap-based buffer over-read in the Exiv2::Internal::PngChunk::keyTXTChunk function of pngchunkint.cpp in Exiv2 0.26. A crafted PNG file will lead to a remote denial of service attack...

5.5CVSS7AI score0.01598EPSS
Exploits1References2
CVE
CVE
added 2017/12/13 12:0 a.m.78 views

CVE-2017-17669

CVE-2017-17669 : Exiv2 0.26 contains a heap-based buffer over-read in Exiv2::Internal::PngChunk::keyTXTChunk (pngchunk_int.cpp). A crafted PNG file can trigger a remote denial of service. Public advisories (Ubuntu USN-3852-1, Debian DLA-3265, Red Hat/Nessus entries) confirm Exiv2 0.26 as affected...

5.5CVSS6.1AI score0.01598EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder