17 matches found
RLSA-2024:3066 Moderate: exempi security update
Exempi provides a library for easy parsing of XMP metadata. Security Fixes: exempi: denial of service via opening of crafted audio file with ID3V2 frame CVE-2020-18651 exempi: denial of service via opening of crafted webp file CVE-2020-18652 For more details about the security issues, including t...
exempi security update
An update is available for exempi. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Exempi provides a library for easy parsing of XMP metadata. Security Fixes:...
Rocky Linux 8 : exempi (RLSA-2024:3066)
The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:3066 advisory. exempi: denial of service via opening of crafted audio file with ID3V2 frame CVE-2020-18651 exempi: denial of service via opening of crafted webp file...
Oracle Linux 8 : exempi (ELSA-2024-3066)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-3066 advisory. - Fix CVE-2020-18652 - Fix CVE-2020-18651 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note...
Moderate: Red Hat Security Advisory: exempi security update
An update for exempi is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...
ALSA-2024:3066 Moderate: exempi security update
Exempi provides a library for easy parsing of XMP metadata. Security Fixes: exempi: denial of service via opening of crafted audio file with ID3V2 frame CVE-2020-18651 exempi: denial of service via opening of crafted webp file CVE-2020-18652 For more details about the security issues, including t...
Moderate: exempi security update
Exempi provides a library for easy parsing of XMP metadata. Security Fixes: exempi: denial of service via opening of crafted audio file with ID3V2 frame CVE-2020-18651 exempi: denial of service via opening of crafted webp file CVE-2020-18652 For more details about the security issues, including t...
RHEL 6 : exempi (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - exempi: Use after free via a PDF file containing JPEG data CVE-2017-18234 - An issue was discovered in...
Huawei EulerOS: Security Advisory for exempi (EulerOS-SA-2024-1262)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE: Security Advisory for exempi (SUSE-SU-2023:3833-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : exempi (SUSE-SU-2023:3833-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:3833-1 advisory. - CVE-2020-18651: Fixed a buffer overflow in ID3 support bsc1214486. Tenable has extracted the preceding...
SUSE-SU-2023:3833-1 Security update for exempi
This update for exempi fixes the following issues: - CVE-2020-18651: Fixed a buffer overflow in ID3 support bsc1214486...
[SECURITY] [DLA 3585-1] exempi security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3585-1 [email protected] https://www.debian.org/lts/security/ Bastien Roucariès September 25, 2023 https://wiki.debian.org/LTS -...
SUSE: Security Advisory (SUSE-SU-2023:3734-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES12 Security Update : exempi (SUSE-SU-2023:3734-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:3734-1 advisory. - CVE-2020-18651: Fixed a buffer overflow in ID3 support bsc1214486. Tenable has extracted the preceding description block directly from the...
Amazon Linux 2 : exempi (ALAS-2023-2260)
The version of exempi installed on the remote host is prior to 2.2.0-9. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2260 advisory. Buffer Overflow vulnerability in function ID3Support::ID3v2Frame::getFrameValue in exempi 2.5.0 and earlier allows remote attackers ...
CVE-2020-18651
CVE-2020-18651 affects the exempi library (ID3v2Frame::getFrameValue) and causes a buffer overflow DoS when opening crafted audio files with ID3V2 frames. Multiple connected advisories (including MiracleLinux, TencentOS Server, Rocky Linux, RHEL, Oracle Linux, AlmaLinux, CentOS, Astra Linux, Rock...