Lucene search
+L

8 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2019-13109

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An integer overflow in Exiv2 through 0.27.1 allows an attacker to cause a denial of service SIGSEGV via a crafted PNG image file, because PngImage::readMetadata...

6.5CVSS6.7AI score0.01579EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/11/30 12:0 a.m.33 views

SUSE SLED15: exiv2 / exiv2-lang / libexiv2-26 / libexiv2-26-32bit / etc (SUSE-SU-2022:4276-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:4276-1 advisory. - CVE-2019-13110: Fixed an integer-overflow and out-of-bounds read in CiffDirectory:readDirector...

9.8CVSS6.9AI score0.03098EPSS
Exploits8References34
Tenable Nessus
Tenable Nessus
added 2022/11/24 12:0 a.m.41 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : exiv2-0_26 (SUSE-SU-2022:4208-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:4208-1 advisory. - CVE-2019-17402: Fixed improper validation of the total size to the offset and size leads to a...

9.8CVSS6.9AI score0.03098EPSS
Exploits8References34
AlmaLinux
AlmaLinux
added 2020/04/28 8:52 a.m.84 views

Moderate: exiv2 security, bug fix, and enhancement update

The exiv2 packages provide a command line utility which can display and manipulate image metadata such as EXIF, LPTC, and JPEG comments. The following packages have been upgraded to a later upstream version: exiv2 0.27.2. BZ1651917 Security Fixes: exiv2: infinite loop and hang in...

8.8CVSS7.5AI score0.04296EPSS
Exploits26References30
OSV
OSV
added 2020/04/28 8:52 a.m.30 views

ALSA-2020:1577 Moderate: exiv2 security, bug fix, and enhancement update

The exiv2 packages provide a command line utility which can display and manipulate image metadata such as EXIF, LPTC, and JPEG comments. The following packages have been upgraded to a later upstream version: exiv2 0.27.2. BZ1651917 Security Fixes: exiv2: infinite loop and hang in...

8.8CVSS7.5AI score0.04296EPSS
Exploits26References30
OpenVAS
OpenVAS
added 2020/04/20 12:0 a.m.55 views

Huawei EulerOS: Security Advisory for exiv2 (EulerOS-SA-2020-1502)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.9AI score0.02363EPSS
Exploits2References2
RedhatCVE
RedhatCVE
added 2019/07/10 5:23 a.m.32 views

CVE-2019-13109

An integer overflow in Exiv2 through 0.27.1 allows an attacker to cause a denial of service SIGSEGV via a crafted PNG image file, because PngImage::readMetadata mishandles a chunkLength - iccOffset subtraction...

6.5CVSS4.2AI score0.01579EPSS
Exploits1References3
CVE
CVE
added 2019/06/30 10:20 p.m.201 views

CVE-2019-13109

CVE-2019-13109 is an Exiv2 vulnerability affecting the PNG read path. The issue arises from an integer overflow in PngImage::readMetadata caused by mishandling a chunkLength - iccOffset subtraction, enabling a crafted PNG image to trigger a denial of service (SIGSEGV). Public references in connec...

6.5CVSS6.2AI score0.01579EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder