45 matches found
Astra Linux - уязвимость в exiv2
Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying metadata of image files. A heap buffer overflow has been discovered in Exiv2 versions v0.27.3 and earlier. The heap overflow occurs when Exiv2 is used to write metadata into a specially crafted image fil...
Astra Linux - уязвимость в exiv2
Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An inefficient algorithm quadratic complexity was found in Exiv2 versions v0.27.3 and earlier. This inefficient algorithm occurs when Exiv2 is used to write metadata into a...
Unity Linux 20.1060e / 20.1070e Security Update: exiv2 (UTSA-2026-017659)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017659 advisory. Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. A read of uninitialized memory was found ...
Unity Linux 20.1060e / 20.1070e Security Update: exiv2 (UTSA-2026-017657)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017657 advisory. Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An inefficient algorithm quadratic...
Unity Linux 20.1060e / 20.1070e Security Update: exiv2 (UTSA-2026-017634)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017634 advisory. Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2...
Unity Linux 20.1060e / 20.1070e Security Update: exiv2 (UTSA-2026-017629)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017629 advisory. Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2...
Unity Linux 20.1060e / 20.1070e Security Update: exiv2 (UTSA-2026-017639)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017639 advisory. Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2...
Unity Linux 20.1060e / 20.1070e Security Update: exiv2 (UTSA-2026-017625)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017625 advisory. Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. An out-of-bounds read was found in Exiv2...
Security update for flannel (important)
openSUSE Security Update: Security update for flannel Announcement ID: openSUSE-SU-2025:0491-1 Rating: important References: 1218694 1236522 1240516 Cross-References: CVE-2019-14697 CVE-2023-45288 CVE-2025-30204 CVSS scores: CVE-2023-45288 SUSE: 6.9...
Security update for flannel (important)
openSUSE Security Update: Security update for flannel Announcement ID: openSUSE-SU-2025:0474-1 Rating: important References: 1218694 1236522 1240516 Cross-References: CVE-2019-14697 CVE-2023-45288 CVE-2025-30204 CVSS scores: CVE-2023-45288 SUSE: 6.9...
WordPress Elastik Page Builder Plugin <= 0.27.4 is vulnerable to Cross Site Scripting (XSS)
Software Elastik Page Builder Type Plugin Vulnerable versions = 0.27.4 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-9274 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID e7cb14e17099 Credits Francesco Carlucci...
PT-2024-39532 · WordPress · Elastik Page Builder
Name of the Vulnerable Software and Affected Versions: Elastik Page Builder plugin for WordPress versions up to, and including, 0.27.4 Description: The issue is related to Stored Cross-Site Scripting via SVG File uploads due to insufficient input sanitization and output escaping. This allows...
CVE-2023-40583
libp2p is a networking stack and library modularized out of The IPFS Project, and bundled separately for other tools to use. In go-libp2p, by using signed peer records a malicious actor can store an arbitrary amount of data in a remote node’s memory. This memory does not get garbage collected and...
SUSE CVE-2021-29457
Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. A heap buffer overflow was found in Exiv2 versions v0.27.3 and earlier. The heap overflow is triggered when Exiv2 is used to write metadata into a crafted image file. An...
SUSE CVE-2021-29458
Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2 versions v0.27.3 and earlier. The out-of-bounds read is triggered when Exiv2 is used to write metadata into a crafted image file. An...
SUSE CVE-2021-29463
Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2 versions v0.27.3 and earlier. The out-of-bounds read is triggered when Exiv2 is used to write metadata into a crafted image file. An...
SUSE CVE-2021-29464
Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. A heap buffer overflow was found in Exiv2 versions v0.27.3 and earlier. The heap overflow is triggered when Exiv2 is used to write metadata into a crafted image file. An...
SUSE CVE-2021-29473
Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. An out-of-bounds read was found in Exiv2 versions v0.27.3 and earlier. Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the...
SUSE CVE-2021-32617
Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An inefficient algorithm quadratic complexity was found in Exiv2 versions v0.27.3 and earlier. The inefficient algorithm is triggered when Exiv2 is used to write metadata int...
exiv2: Out-of-bounds read in Exiv2::Jp2Image::printStructure
Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2 versions v0.27.4 and earlier. The out-of-bounds read is triggered when Exiv2 is used to print the metadata of a crafted image file. A...