9 matches found
Linux Distros Unpatched Vulnerability : CVE-2021-37623
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An infinite loop was found in Exiv2...
SUSE: Security Advisory (SUSE-SU-2022:3889-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2021-37623 affecting package exiv2 for versions less than 0.27.5-1
CVE-2021-37623 affecting package exiv2 for versions less than 0.27.5-1. An upgraded version of the package is available that resolves this issue...
Huawei EulerOS: Security Advisory for exiv2 (EulerOS-SA-2021-2628)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated exiv2 packages fix security vulnerabilities
The updated exiv2 packages fix security vulnerabilities: An assertion failure is triggered when Exiv2 is used to modify the metadata of a crafted image file. An attacker could potentially exploit the vulnerability to cause a denial of service, if they can trick the victim into running Exiv2 on a...
Fedora: Security Advisory for mingw-exiv2 (FEDORA-2021-cbaef8e2d5)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2021-37623
Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An infinite loop was found in Exiv2 versions v0.27.4 and earlier. The infinite loop is triggered when Exiv2 is used to modify the metadata of a crafted image file. An attacke...
CVE-2021-37623
CVE-2021-37623 affects Exiv2 (v0.27.4 and earlier). An infinite loop is triggered when deleting IPTC metadata on a crafted image, which can lead to denial of service if Exiv2 is run on the crafted file. The issue is fixed in v0.27.5. Connected advisories corroborate Exiv2 as the affected componen...
CVE-2021-37623 Denial of service due to infinite loop in JpegBase::printStructure (#2)
Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An infinite loop was found in Exiv2 versions v0.27.4 and earlier. The infinite loop is triggered when Exiv2 is used to modify the metadata of a crafted image file. An attacke...