Lucene search
K

15 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2019-13112

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A PngChunk::parseChunkContent uncontrolled memory allocation in Exiv2 through 0.27.1 allows an attacker to cause a denial of service crash due to an std::badall...

6.5CVSS6.3AI score0.01981EPSS
Exploits1References2
Debian
Debian
added 2023/01/10 5:2 p.m.103 views

[SECURITY] [DLA 3265-1] exiv2 security update

Debian LTS Advisory DLA-3265-1 [email protected] https://www.debian.org/lts/security/ Helmut Grohne January 10, 2023 https://wiki.debian.org/LTS Package : exiv2 Version : 0.25-4+deb10u4 CVE ID : CVE-2017-11591 CVE-2017-14859 CVE-2017-14862 CVE-2017-14864 CVE-2017-17669 CVE-2017-18005...

8.1CVSS6.8AI score0.03098EPSS
Exploits18
OSV
OSV
added 2020/04/28 8:52 a.m.30 views

ALSA-2020:1577 Moderate: exiv2 security, bug fix, and enhancement update

The exiv2 packages provide a command line utility which can display and manipulate image metadata such as EXIF, LPTC, and JPEG comments. The following packages have been upgraded to a later upstream version: exiv2 0.27.2. BZ1651917 Security Fixes: exiv2: infinite loop and hang in...

8.8CVSS7.5AI score0.04296EPSS
Exploits26References30
AlmaLinux
AlmaLinux
added 2020/04/28 8:52 a.m.81 views

Moderate: exiv2 security, bug fix, and enhancement update

The exiv2 packages provide a command line utility which can display and manipulate image metadata such as EXIF, LPTC, and JPEG comments. The following packages have been upgraded to a later upstream version: exiv2 0.27.2. BZ1651917 Security Fixes: exiv2: infinite loop and hang in...

8.8CVSS7.5AI score0.04296EPSS
Exploits26References30
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.34 views

Huawei EulerOS: Security Advisory for exiv2 (EulerOS-SA-2019-2375)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7AI score0.03098EPSS
Exploits15References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.26 views

Huawei EulerOS: Security Advisory for exiv2 (EulerOS-SA-2019-2277)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.7AI score0.0273EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.34 views

Huawei EulerOS: Security Advisory for exiv2 (EulerOS-SA-2019-2144)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.9AI score0.0296EPSS
Exploits13References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.33 views

Huawei EulerOS: Security Advisory for exiv2 (EulerOS-SA-2019-2576)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7AI score0.03098EPSS
Exploits14References2
Tenable Nessus
Tenable Nessus
added 2019/07/16 12:0 a.m.34 views

Ubuntu 16.04 LTS / 18.04 LTS : Exiv2 vulnerabilities (USN-4056-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4056-1 advisory. It was discovered that Exiv2 incorrectly handled certain PSD files. An attacker could possibly use this issue to cause a denial of service...

6.5CVSS6.7AI score0.02127EPSS
Exploits5References8
OpenVAS
OpenVAS
added 2019/07/16 12:0 a.m.40 views

Ubuntu: Security Advisory (USN-4056-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.7AI score0.02127EPSS
Exploits5References2
OSV
OSV
added 2019/06/30 11:15 p.m.22 views

CVE-2019-13112

A PngChunk::parseChunkContent uncontrolled memory allocation in Exiv2 through 0.27.1 allows an attacker to cause a denial of service crash due to an std::badalloc exception via a crafted PNG image file...

6.5CVSS3.3AI score
Exploits0References5
OSV
OSV
added 2019/06/30 11:15 p.m.5 views

ALPINE-CVE-2019-13112

A PngChunk::parseChunkContent uncontrolled memory allocation in Exiv2 through 0.27.1 allows an attacker to cause a denial of service crash due to an std::badalloc exception via a crafted PNG image file...

6.5CVSS6.7AI score0.01981EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2019/06/30 12:0 a.m.34 views

CVE-2019-13112

A PngChunk::parseChunkContent uncontrolled memory allocation in Exiv2 through 0.27.1 allows an attacker to cause a denial of service crash due to an std::badalloc exception via a crafted PNG image file...

6.5CVSS6.8AI score0.01981EPSS
Exploits1References4
OSV
OSV
added 2019/06/30 12:0 a.m.3 views

UBUNTU-CVE-2019-13112

A PngChunk::parseChunkContent uncontrolled memory allocation in Exiv2 through 0.27.1 allows an attacker to cause a denial of service crash due to an std::badalloc exception via a crafted PNG image file...

6.5CVSS6.7AI score0.01981EPSS
Exploits1References5
CVE
CVE
added 2019/06/30 12:0 a.m.186 views

CVE-2019-13112

Exiv2 (up to 0.27.1) is vulnerable to CVE-2019-13112 via PngChunk::parseChunkContent, where an uncontrolled memory allocation on parsing a crafted PNG can cause a denial of service (crash from std::bad_alloc). Several advisories confirm this issue alongside related Exiv2 PNG/CRW-related flaws, an...

6.5CVSS6AI score0.01981EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder