CVE-2019-20421

Synopsis Moderate: exiv2 security, bug fix, and enhancement update Type/Severity Security Advisory: Moderate Topic An update for exiv2, gegl, gnome-color-manager, and libgexiv2 is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a security impact of Moder ...

Debian Bug report logs - #950183 exiv2: CVE-2019-20421 Package: src:exiv2; Maintainer for src:exiv2 is Debian KDE Extras Team <pkg-kde-extras@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Wed, 29 Jan 2020 21:09:01 UTC Severity: important Tags: fixed-upstream, security, upstream ...

Exiv2 could be made to crash if it opened a specially crafted image ...

Several vulnerabilities have been discovered in Exiv2, a C++ library and a command line utility to manage image metadata which could result in denial of service or the execution of arbitrary code if a malformed file is parsed For the stable distribution (buster), these problems have been fixed in version 025-4+deb10u2 We recommend that you upgra ...