Lucene search
GoogleOSV:CVE-2018-20097HistoryDec 12, 2018 - 10:29 a.m.
CVE-2018-20097
2018-12-1210:29:00
Google
osv.dev
9
EPSS
0.009
Percentile
82.9%
There is a SEGV in Exiv2::Internal::TiffParserWorker::findPrimaryGroups of tiffimage_int.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of service attack.
References
access.redhat.com/errata/RHSA-2019:2101
github.com/Exiv2/exiv2/issues/590
github.com/TeamSeri0us/pocs/tree/master/exiv2/20181206
lists.debian.org/debian-lts-announce/2019/02/msg00038.html
lists.debian.org/debian-lts-announce/2023/01/msg00004.html
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZXCEKTYF7HLM6VH2WCWO2HXTJH37MBLA/
Related
ubuntucve
ubuntucve
CVE-2018-20097
2018-12-12 00:00:00
nvd
nvd
CVE-2018-20097
2018-12-12 10:29:00
osv
osv
PYSEC-2018-118
2018-12-12 10:29:00
exiv2 - security update
2019-02-26 00:00:00
exiv2 - security update
2023-01-10 00:00:00
cvelist
cvelist
CVE-2018-20097
2018-12-12 00:00:00
redhatcve
redhatcve
CVE-2018-20097
2018-12-18 10:22:50
cve
cve
CVE-2018-20097
2018-12-12 10:29:00
prion
prion
Design/Logic Flaw
2018-12-12 10:29:00
debiancve
debiancve
CVE-2018-20097
2018-12-12 10:29:00
veracode
veracode
Denial Of Service (DoS)
2018-12-26 03:16:29
fedora
fedora
[SECURITY] Fedora 30 Update: mingw-exiv2-0.27-3.fc30
2019-04-14 00:03:21
nessus
nessus
Fedora 30 : mingw-exiv2 (2019-c9cbbbb5c0)
2019-05-02 00:00:00
Debian DLA-1691-1 : exiv2 security update
2019-02-27 00:00:00
SUSE SLES12 Security Update : exiv2 (SUSE-SU-2022:4252-1)
2022-11-29 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-1691-1)
2019-02-26 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:4252-1)
2022-11-29 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:4208-1)
2022-11-24 00:00:00
debian
debian
[SECURITY] [DLA 1691-1] exiv2 security update
2019-02-26 21:17:33
[SECURITY] [DLA 3265-1] exiv2 security update
2023-01-10 17:02:40
oraclelinux
oraclelinux
exiv2 security, bug fix, and enhancement update
2019-08-13 00:00:00
exiv2 security, bug fix, and enhancement update
2020-05-05 00:00:00
amazon
amazon
Low: exiv2
2019-10-21 18:01:00
redhat
redhat
(RHSA-2019:2101) Low: exiv2 security, bug fix, and enhancement update
2019-08-06 08:00:57
(RHSA-2020:1577) Moderate: exiv2 security, bug fix, and enhancement update
2020-04-28 08:52:31
centos
centos
exiv2 security update
2019-09-18 20:54:21
rocky
rocky
exiv2 security, bug fix, and enhancement update
2020-04-28 08:52:31
almalinux
almalinux
Moderate: exiv2 security, bug fix, and enhancement update
2020-04-28 08:52:31