Huawei EulerOS: Security Advisory for exempi (EulerOS-SA-2019-2575)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CentOS 7 : exempi (CESA-2019:2048)

An update for exempi is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

Scientific Linux Security Update : exempi on SL7.x x86_64 (20190806)

Security Fixes : - exempi: Infinite Loop in Chunk class in XMPFiles/source/FormatSupport/RIFF.cpp CVE-2017-18233 - exempi: Use after free via a PDF file containing JPEG data CVE-2017-18234 - exempi: Infinite loop in ASFSupport::ReadHeaderObject function in...

Denial Of Service (DoS)

exempi is vulnerable to denial of service DoS. The vulnerability exists through an infinite loop in TradQTManager::ParseCachedBoxes function in XMPFiles/source/FormatSupport/QuickTimeSupport.cpp...

Code injection

An issue was discovered in Exempi before 2.4.4. The TradQTManager::ParseCachedBoxes function in XMPFiles/source/FormatSupport/QuickTimeSupport.cpp allows remote attackers to cause a denial of service infinite loop via crafted XMP data in a .qt file...