Lucene search
K

15 matches found

Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.12 views

Alibaba Cloud Linux 3 : 0003: libexif (ALINUX3-SA-2021:0003)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2021:0003 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2020-0198: In exifdataloaddatacontent ...

9.8CVSS8.5AI score0.04262EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2022/04/12 12:0 a.m.27 views

SUSE: Security Advisory (SUSE-SU-2022:1148-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.7AI score0.04262EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2021/02/02 12:0 a.m.20 views

Huawei EulerOS: Security Advisory for libexif (EulerOS-SA-2021-1151)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.2AI score0.04262EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/02/01 12:0 a.m.40 views

EulerOS 2.0 SP8 : libexif (EulerOS-SA-2021-1151)

According to the versions of the libexif package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In exifdataloaddatathumbnail of exif-data.c, there is a possible denial of service due to an integer overflow. This could lead to remote denial ...

7.5CVSS7.7AI score0.04262EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2021/01/19 12:0 a.m.21 views

Huawei EulerOS: Security Advisory for libexif (EulerOS-SA-2021-1083)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.2AI score0.04262EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/11/26 12:0 a.m.22 views

Fedora: Security Advisory for libexif (FEDORA-2020-0aa0fc1b0c)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS8.8AI score0.03189EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/11/25 12:0 a.m.37 views

Fedora 32 : libexif (2020-0aa0fc1b0c)

CVE-2020-0181, CVE-2020-0198, and CVE-2020-0452 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C...

9.8CVSS7.4AI score0.04262EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2020/11/17 12:0 a.m.31 views

Fedora 33 : libexif (2020-e99ef3282f)

CVE-2020-0181, CVE-2020-0198, and CVE-2020-0452 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C...

9.8CVSS7.4AI score0.04262EPSS
Exploits0References4
Oracle linux
Oracle linux
added 2020/11/10 12:0 a.m.35 views

libexif security, bug fix, and enhancement update

0.6.22-4 - Add patch for CVE-2020-0181/CVE-2020-0198 - Resolves: 1847753 - Resolves: 1847761 0.6.22-3 - Also remove timezone from the .mo files - Related: 1841320 0.6.22-2 - Remove timestamps from the .mo files to avoid multilib conflicts - Related: 1841320...

8.8CVSS2.3AI score0.04262EPSS
Exploits0
Mageia
Mageia
added 2020/07/04 10:47 p.m.42 views

Updated libexif packages fix security vulnerability

The updated packages fix a security vulnerability: In exifdataloaddatacontent of exif-data.c, there is a possible UBSAN abort due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation...

7.5CVSS5.4AI score0.04262EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2020/06/17 12:0 a.m.36 views

Debian DLA-2249-1 : libexif security update

The following CVEs were reported against src:libexif. CVE-2020-0182 In exifentrygetvalue of exif-entry.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not...

7.5CVSS7.2AI score0.04262EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2020/06/17 12:0 a.m.41 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : libexif vulnerabilities (USN-4396-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4396-1 advisory. It was discovered that libexif incorrectly handled certain inputs. An attacker could possibly use this issue to expose sensitive...

9.1CVSS7.2AI score0.04262EPSS
Exploits0References7
Ubuntu
Ubuntu
added 2020/06/16 1:12 p.m.73 views

USN-4396-1: libexif vulnerabilities

It was discovered that libexif incorrectly handled certain inputs. An attacker could possibly use this issue to expose sensitive information. CVE-2020-0093, CVE-2020-0182 It was discovered that libexif incorrectly handled certain inputs. An attacker could possibly use this issue to cause a remote...

9.1CVSS7.2AI score0.04262EPSS
Exploits0
OSV
OSV
added 2020/06/11 3:15 p.m.9 views

CVE-2020-0198

In exifdataloaddatacontent of exif-data.c, there is a possible UBSAN abort due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-14642894...

7.5CVSS8AI score
Exploits0References6
CVE
CVE
added 2020/06/11 2:43 p.m.232 views

CVE-2020-0198

The CVE-2020-0198 entry concerns the libexif library used on Android-10. The issue is in exif_data_load_data_content of exif-data.c, where an integer overflow can trigger a UBSAN abort, potentially enabling remote denial of service with no additional execution privileges. Exploitation requires us...

7.5CVSS7.6AI score0.04262EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder