31 matches found
NewStart CGSL CORE 5.05 / MAIN 5.05 : libexif Multiple Vulnerabilities (NS-SA-2021-0158)
The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has libexif packages installed that are affected by multiple vulnerabilities: - In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media...
SUSE SLES11 Security Update : libexif (SUSE-SU-2020:14294-1)
The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2020:14294-1 advisory. - An error when processing the EXIFIFDINTEROPERABILITY and EXIFIFDEXIF tags within libexif version 0.6.21 can be exploited to exhaust availabl...
SUSE: Security Advisory (SUSE-SU-2020:1534-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for libexif (EulerOS-SA-2021-1083)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Scientific Linux Security Update : libexif on SL7.x x86_64 (20201001)
Security Fixes : - libexif: out of bound write in exif-data.c CVE-2019-9278 - libexif: out of bounds read due to a missing bounds check in exifdatasavedataentry function in exif-data.c CVE-2020-0093 - libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and...
libexif security update
CentOS Errata and Security Advisory CESA-2020:4040 An update for libexif is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
Oracle Linux 7 : libexif (ELSA-2020-4040)
The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-4040 advisory. 0.6.22-1 - Upgrade to 0.6.22 - Resolves: 1841316 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory...
Moderate: Red Hat Security Advisory: libexif security, bug fix, and enhancement update
An update for libexif is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...
RHEL 7 : libexif (RHSA-2020:4040)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4040 advisory. The libexif packages provide a library for extracting extra information from image files. The following packages have been upgraded to a lat...
EulerOS 2.0 SP8 : libexif (EulerOS-SA-2020-1860)
According to the version of the libexif package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media...
SUSE-SU-2020:1553-2 Security update for libexif
This update for libexif to 0.6.22 fixes the following issues: Security issues fixed: - CVE-2016-6328: Fixed an integer overflow in parsing MNOTE entry data of the input file bsc1055857. - CVE-2017-7544: Fixed an out-of-bounds heap read vulnerability in exifdatasavedataentry function in...
Fedora: Security Advisory for libexif (FEDORA-2020-085150ac6e)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora 31 : libexif (2020-085150ac6e)
New upstream release. It largely contains stability, security and bugfixes. Some EXIF 2.3 tags have been added. See also: https://github.com/libexif/libexif/releases/tag/libexif-0622-release Note that Tenable Network Security has extracted the preceding description block directly from the Fedora...
SUSE SLES12 Security Update : libexif (SUSE-SU-2020:1534-1)
This update for libexif fixes the following issues : Security issues fixed : CVE-2016-6328: Fixed an integer overflow in parsing MNOTE entry data of the input file bsc1055857. CVE-2017-7544: Fixed an out-of-bounds heap read vulnerability in exifdatasavedataentry function in libexif/exif-data.c...
SUSE SLED15 / SLES15 Security Update : libexif (SUSE-SU-2020:1553-1)
This update for libexif to 0.6.22 fixes the following issues : Security issues fixed : CVE-2016-6328: Fixed an integer overflow in parsing MNOTE entry data of the input file bsc1055857. CVE-2017-7544: Fixed an out-of-bounds heap read vulnerability in exifdatasavedataentry function in...
openSUSE: Security Advisory for libexif (openSUSE-SU-2020:0793-1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE Security Update : libexif (openSUSE-2020-793)
This update for libexif to 0.6.22 fixes the following issues : Security issues fixed : - CVE-2016-6328: Fixed an integer overflow in parsing MNOTE entry data of the input file bsc1055857. - CVE-2017-7544: Fixed an out-of-bounds heap read vulnerability in exifdatasavedataentry function in...
CVE-2020-0181
In exifdataloaddatathumbnail of exif-data.c, there is a possible denial of service due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID...
[slackware-security] libexif
New libexif packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/libexif-0.6.22-i486-1slack14.2.txz: Upgraded. This update fixes bugs and security issues: CVE-2018-20030: Fix for...
openSUSE: Security Advisory for libexif (openSUSE-SU-2020:0264-1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...