6 matches found
CVE-2021-34335 affecting package exiv2 for versions less than 0.27.5-1
CVE-2021-34335 affecting package exiv2 for versions less than 0.27.5-1. An upgraded version of the package is available that resolves this issue...
Huawei EulerOS: Security Advisory for exiv2 (EulerOS-SA-2021-2628)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP8 : exiv2 (EulerOS-SA-2021-2628)
According to the versions of the exiv2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Exiv2 0.27.99.0 has a global buffer over-read in Exiv2::Internal::Nikon1MakerNote::print0x0088 in nikonmnint.cpp which can result in an informati...
Updated exiv2 packages fix security vulnerabilities
The updated exiv2 packages fix security vulnerabilities: An assertion failure is triggered when Exiv2 is used to modify the metadata of a crafted image file. An attacker could potentially exploit the vulnerability to cause a denial of service, if they can trick the victim into running Exiv2 on a...
Fedora: Security Advisory for mingw-exiv2 (FEDORA-2021-cbaef8e2d5)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2021-34335
Exiv2 v0.27.4 and earlier have a denial-of-service risk caused by a floating-point exception (divide-by-zero) when printing translated metadata (requires -p t). The issue triggers on crafted image files and can be exploited to crash Exiv2, not a general compromise. The vulnerability is fixed in v...