Lucene search
K

11 matches found

Tenable Nessus
Tenable Nessus
added 2023/11/07 12:0 a.m.32 views

RockyLinux 8 : exiv2 (RLSA-2020:1577)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2020:1577 advisory. exiv2: infinite loop and hang in Jp2Image::readMetadata in jp2image.cpp could lead to DoS CVE-2019-20421 exiv2: null pointer dereference in the...

8.8CVSS6.6AI score0.04296EPSS
Exploits26References62
Tenable Nessus
Tenable Nessus
added 2022/10/18 12:0 a.m.32 views

SUSE SLED15: exiv2 / exiv2-lang / libexiv2-26 / libexiv2-26-32bit / etc (SUSE-SU-2022:3598-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3598-1 advisory. - CVE-2021-37621: Fixed denial of service due to infinite loop in Image:printIFDStructure...

7.5CVSS6.8AI score0.02555EPSS
Exploits8References44
OSV
OSV
added 2020/04/28 8:52 a.m.29 views

ALSA-2020:1577 Moderate: exiv2 security, bug fix, and enhancement update

The exiv2 packages provide a command line utility which can display and manipulate image metadata such as EXIF, LPTC, and JPEG comments. The following packages have been upgraded to a later upstream version: exiv2 0.27.2. BZ1651917 Security Fixes: exiv2: infinite loop and hang in...

8.8CVSS7.5AI score0.04296EPSS
Exploits26References30
AlmaLinux
AlmaLinux
added 2020/04/28 8:52 a.m.81 views

Moderate: exiv2 security, bug fix, and enhancement update

The exiv2 packages provide a command line utility which can display and manipulate image metadata such as EXIF, LPTC, and JPEG comments. The following packages have been upgraded to a later upstream version: exiv2 0.27.2. BZ1651917 Security Fixes: exiv2: infinite loop and hang in...

8.8CVSS7.5AI score0.04296EPSS
Exploits26References30
Amazon
Amazon
added 2019/10/21 12:0 a.m.43 views

Low: exiv2

Issue Overview: An integer underflow, leading to heap-based out-of-bound read, was found in the way Exiv2 library prints IPTC Photo Metadata embedded in an image. By persuading a victim to open a crafted image, a remote attacker could crash the application or possibly retrieve a portion of...

8.8CVSS7.9AI score0.02891EPSS
Exploits20
Tenable Nessus
Tenable Nessus
added 2019/09/19 12:0 a.m.48 views

CentOS 7 : exiv2 (CESA-2019:2101)

An update for exiv2 is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

8.8CVSS6.7AI score0.02891EPSS
Exploits21References24
Tenable Nessus
Tenable Nessus
added 2019/08/27 12:0 a.m.37 views

Scientific Linux Security Update : exiv2 on SL7.x x86_64 (20190806)

The following packages have been upgraded to a later upstream version: exiv2 0.27.0. Security Fixes : - exiv2: heap-buffer-overflow in Exiv2::IptcData::printStructure in src/iptc.cpp CVE-2017-17724 - exiv2: out-of-bounds read in Exiv2::Internal::stringFormat image.cpp CVE-2018-8976 - exiv2: inval...

8.8CVSS6.5AI score0.02891EPSS
Exploits20References23
RedhatCVE
RedhatCVE
added 2018/11/05 4:49 p.m.31 views

CVE-2018-18915

There is an infinite loop in the Exiv2::Image::printIFDStructure function of image.cpp in Exiv2 0.27-RC1. A crafted input will lead to a remote denial of service attack...

6.5CVSS3.4AI score0.01844EPSS
Exploits1References2
OSV
OSV
added 2018/11/03 4:29 a.m.30 views

CVE-2018-18915

There is an infinite loop in the Exiv2::Image::printIFDStructure function of image.cpp in Exiv2 0.27-RC1. A crafted input will lead to a remote denial of service attack...

6.5CVSS6.6AI score
Exploits0References2
CVE
CVE
added 2018/11/03 4:0 a.m.154 views

CVE-2018-18915

CVE-2018-18915 : In Exiv2 0.27-RC1, there is an infinite loop in Exiv2::Image::printIFDStructure (image.cpp) that can cause remote denial of service via crafted input. This vulnerability is referenced in multiple advisories (e.g., Exiv2-related Nessus/MiracleLinux/Rocky/Oracle/SUSE entries) and i...

6.5CVSS6.2AI score0.01844EPSS
Exploits1References2Affected Software1
Debian CVE
Debian CVE
added 2018/11/03 4:0 a.m.29 views

CVE-2018-18915

There is an infinite loop in the Exiv2::Image::printIFDStructure function of image.cpp in Exiv2 0.27-RC1. A crafted input will lead to a remote denial of service attack...

6.5CVSS6.2AI score0.01844EPSS
Exploits1
Rows per page
Query Builder