CVE-2018-19607

Debian Bug report logs - #915134 exiv2: CVE-2018-19607 Package: src:exiv2; Maintainer for src:exiv2 is Debian KDE Extras Team <pkg-kde-extras@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Fri, 30 Nov 2018 20:21:01 UTC Severity: grave Tags: fixed-upstream, patch, security, upstr ...

Synopsis Low: exiv2 security, bug fix, and enhancement update Type/Severity Security Advisory: Low Topic An update for exiv2 is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Low A Common Vulnerability Scoring System (CVSS) base sc ...

Synopsis Moderate: exiv2 security, bug fix, and enhancement update Type/Severity Security Advisory: Moderate Topic An update for exiv2, gegl, gnome-color-manager, and libgexiv2 is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a security impact of Moder ...

An integer underflow, leading to heap-based out-of-bound read, was found in the way Exiv2 library prints IPTC Photo Metadata embedded in an image By persuading a victim to open a crafted image, a remote attacker could crash the application or possibly retrieve a portion of memory(CVE-2017-17724) The tEXtToDataBuf function in pngimagecpp in Exiv2 ...

Exiv2::isoSpeed in easyaccesscpp in Exiv2 v027-RC2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file ...