17 matches found
Mageia: Security Advisory (MGASA-2018-0183)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Advisory ROSA-SA-2021-1832
Software: exempi 2.2.0 OS: Cobalt 7.9 CVE-ID: CVE-2017-18235 CVE-Crit: MEDIUM CVE-DESC: An issue was discovered in Exempi before 2.4.3. The VPXChunk class in XMPFiles / source / FormatSupport / WEBPSupport.cpp does not guarantee non-zero width and height values, allowing remote attackers to cause...
Huawei EulerOS: Security Advisory for exempi (EulerOS-SA-2021-1781)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2018:3389-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 33 : python-msldap (2020-e22e9a655d)
Update to latest upstream release 0.3.15 1885156 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C...
Fedora 28 : exempi (2018-1c9f6768cf)
Version 2.4.5 fixes the following security issues : - CVE-2018-7728 - CVE-2018-7729 - CVE-2018-7730 - CVE-2018-7731 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and...
SUSE SLED12 / SLES12 Security Update : exempi (SUSE-SU-2018:3389-1)
This update for exempi fixes the following security issues : CVE-2017-18233: Prevent integer overflow in the Chunk class that allowed remote attackers to cause a denial of service infinite loop via crafted XMP data in a .avi file bsc1085584. CVE-2017-18238: The TradQTManager::ParseCachedBoxes...
Fedora Update for exempi FEDORA-2018-c442aad4dc
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 27 : exempi (2018-c442aad4dc)
Version 2.4.5 fixes the following security issues : - CVE-2018-7728 - CVE-2018-7729 - CVE-2018-7730 - CVE-2018-7731 Version 2.4.4 fixes the following security issues : - CVE-2017-18233 - CVE-2017-18236 Version 2.4.3 fixes the following security issues : - CVE-2017-18234 - CVE-2017-18235 -...
Debian: Security Advisory (DLA-1310-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 1310-1] exempi security update
Package : exempi Version : 2.2.0-1+deb7u1 CVE ID : CVE-2017-18233 CVE-2017-18234 CVE-2017-18236 CVE-2017-18238 CVE-2018-7728 CVE-2018-7730 Various issues were discovered in exempi, a library to parse XMP metadata that may cause a denial-of-service or may have other unspecified impact via crafted...
openSUSE Security Update : exempi (openSUSE-2018-282)
This update for exempi fixes the following issues : - CVE-2018-7728: Specially crafted TIFF images could have been used to cause a denial of service via a heap-based buffer overflow boo1085297 - CVE-2018-7730: Specially crafted Excel files could have been used cause a denial of service via a...
CVE-2018-7728
An out-of-bounds read vulnerability has been discovered in Exempi in the way it handles Extensible Metadata Platform XMP data in TIFF images. An attacker could cause a denial of service by convincing a user to open a crafted TIFF image file...
CVE-2018-7728
An issue was discovered in Exempi through 2.4.4. XMPFiles/source/FileHandlers/TIFFHandler.cpp mishandles a case of a zero length, leading to a heap-based buffer over-read in the MD5Update function in third-party/zuid/interfaces/MD5.cpp...
CVE-2018-7728
An issue was discovered in Exempi through 2.4.4. XMPFiles/source/FileHandlers/TIFFHandler.cpp mishandles a case of a zero length, leading to a heap-based buffer over-read in the MD5Update function in third-party/zuid/interfaces/MD5.cpp...
CVE-2018-7728
CVE-2018-7728 affects Exempi up to version 2.4.4, where TIFF_Handler.cpp mishandles a zero-length case, causing a heap-based buffer over-read in MD5Update(). The issue is fixed in Exempi 2.4.5 (Fedora 28) and incorporated in various vendor advisories (e.g., SUSE SUSE-SU-2018:3389-1; EulerOS advis...
UBUNTU-CVE-2018-7728
An issue was discovered in Exempi through 2.4.4. XMPFiles/source/FileHandlers/TIFFHandler.cpp mishandles a case of a zero length, leading to a heap-based buffer over-read in the MD5Update function in third-party/zuid/interfaces/MD5.cpp...