Lucene search
K

21 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2018-10958

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In types.cpp in Exiv2 0.26, a large size value may lead to a SIGABRT during an attempt at memory allocation for an Exiv2::Internal::PngChunk::zlibUncompress cal...

6.5CVSS6.7AI score0.02524EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2018:3882-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.2AI score0.03098EPSS
Exploits8References12
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2018:3882-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.2AI score0.03098EPSS
Exploits8References12
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.34 views

Huawei EulerOS: Security Advisory for exiv2 (EulerOS-SA-2019-2375)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7AI score0.03098EPSS
Exploits15References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.34 views

Huawei EulerOS: Security Advisory for exiv2 (EulerOS-SA-2019-2144)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.9AI score0.0296EPSS
Exploits13References2
Amazon
Amazon
added 2019/10/21 12:0 a.m.43 views

Low: exiv2

Issue Overview: An integer underflow, leading to heap-based out-of-bound read, was found in the way Exiv2 library prints IPTC Photo Metadata embedded in an image. By persuading a victim to open a crafted image, a remote attacker could crash the application or possibly retrieve a portion of...

8.8CVSS7.9AI score0.02891EPSS
Exploits20
Tenable Nessus
Tenable Nessus
added 2019/09/19 12:0 a.m.48 views

CentOS 7 : exiv2 (CESA-2019:2101)

An update for exiv2 is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

8.8CVSS6.7AI score0.02891EPSS
Exploits21References24
Tenable Nessus
Tenable Nessus
added 2019/08/27 12:0 a.m.37 views

Scientific Linux Security Update : exiv2 on SL7.x x86_64 (20190806)

The following packages have been upgraded to a later upstream version: exiv2 0.27.0. Security Fixes : - exiv2: heap-buffer-overflow in Exiv2::IptcData::printStructure in src/iptc.cpp CVE-2017-17724 - exiv2: out-of-bounds read in Exiv2::Internal::stringFormat image.cpp CVE-2018-8976 - exiv2: inval...

8.8CVSS6.5AI score0.02891EPSS
Exploits20References23
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.44 views

Fedora 28 : exiv2 (2018-8b67a5c7e2)

Exiv2 update with security fixes. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...

8.8CVSS6.5AI score0.02891EPSS
Exploits10References11
Tenable Nessus
Tenable Nessus
added 2018/12/13 12:0 a.m.32 views

SUSE SLED12 / SLES12 Security Update : exiv2 (SUSE-SU-2018:3882-2)

This update for exiv2 fixes the following issues : CVE-2017-11591: A floating point exception in the Exiv2::ValueType function could lead to a remote denial of service attack via crafted input. bsc1050257 CVE-2017-14864: An invalid memory address dereference was discovered in Exiv2::getULong in...

9.8CVSS6.9AI score0.03098EPSS
Exploits8References28
Tenable Nessus
Tenable Nessus
added 2018/11/26 12:0 a.m.28 views

SUSE SLED12 / SLES12 Security Update : exiv2 (SUSE-SU-2018:3882-1)

This update for exiv2 fixes the following issues : CVE-2017-11591: A floating point exception in the Exiv2::ValueType function could lead to a remote denial of service attack via crafted input. bsc1050257 CVE-2017-14864: An invalid memory address dereference was discovered in Exiv2::getULong in...

9.8CVSS6.9AI score0.03098EPSS
Exploits8References28
OSV
OSV
added 2018/11/23 4:9 p.m.6 views

SUSE-SU-2018:3882-1 Security update for exiv2

This update for exiv2 fixes the following issues: - CVE-2017-11591: A floating point exception in the Exiv2::ValueType function could lead to a remote denial of service attack via crafted input. bsc1050257 - CVE-2017-14864: An invalid memory address dereference was discovered in Exiv2::getULong i...

9.8CVSS6.6AI score0.03098EPSS
Exploits8References19
OpenVAS
OpenVAS
added 2018/10/26 12:0 a.m.98 views

Ubuntu: Security Advisory (USN-3700-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8AI score0.0296EPSS
Exploits6References2
OpenVAS
OpenVAS
added 2018/08/10 12:0 a.m.37 views

Fedora Update for exiv2 FEDORA-2018-871fa4d189

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.2AI score0.0296EPSS
Exploits16References2
OpenVAS
OpenVAS
added 2018/08/07 12:0 a.m.37 views

Fedora Update for exiv2 FEDORA-2018-8b67a5c7e2

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.4AI score0.0296EPSS
Exploits13References2
Tenable Nessus
Tenable Nessus
added 2018/07/05 12:0 a.m.35 views

Debian DSA-4238-1 : exiv2 - security update

Several vulnerabilities have been discovered in Exiv2, a C++ library and a command line utility to manage image metadata which could result in denial of service or the execution of arbitrary code if a malformed file is parsed. C Tenable Network Security, Inc. The descriptive text and package chec...

9.8CVSS7.1AI score0.0296EPSS
Exploits6References9
Debian
Debian
added 2018/07/03 9:2 p.m.41 views

[SECURITY] [DSA 4238-1] exiv2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4238-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 03, 2018 https://www.debian.org/security/faq -...

9.8CVSS8AI score0.0296EPSS
Exploits6
NVD
NVD
added 2018/05/10 2:29 a.m.17 views

CVE-2018-10958

In types.cpp in Exiv2 0.26, a large size value may lead to a SIGABRT during an attempt at memory allocation for an Exiv2::Internal::PngChunk::zlibUncompress call...

6.5CVSS6.5AI score0.02524EPSS
Exploits1References7
OSV
OSV
added 2018/05/10 2:29 a.m.21 views

CVE-2018-10958

In types.cpp in Exiv2 0.26, a large size value may lead to a SIGABRT during an attempt at memory allocation for an Exiv2::Internal::PngChunk::zlibUncompress call...

6.5CVSS6.7AI score
Exploits0References7
CVE
CVE
added 2018/05/10 2:0 a.m.125 views

CVE-2018-10958

CVE-2018-10958 affects Exiv2 0.26 where a large size value can cause a SIGABRT during memory allocation in Exiv2::Internal::PngChunk::zlibUncompress. Connected advisories list this CVE among Exiv2 issues and describe the crash path; no explicit patch version is stated for this CVE in the provided...

6.5CVSS6.4AI score0.02524EPSS
Exploits1References7Affected Software1
Rows per page
Query Builder