Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2020:4040
HistorySep 29, 2020 - 7:53 a.m.

(RHSA-2020:4040) Moderate: libexif security, bug fix, and enhancement update

2020-09-2907:53:57
access.redhat.com
23

0.01 Low

EPSS

Percentile

83.4%

JSON

The libexif packages provide a library for extracting extra information from image files.

The following packages have been upgraded to a later upstream version: libexif (0.6.22). (BZ#1841316)

Security Fix(es):

  • libexif: out of bound write in exif-data.c (CVE-2019-9278)

  • libexif: out of bounds read due to a missing bounds check in exif_data_save_data_entry function in exif-data.c (CVE-2020-0093)

  • libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and use-after-free (CVE-2020-13113)

  • libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time (CVE-2020-13114)

  • libexif: out of bounds read due to a missing bounds check in exif_entry_get_value function in exif-entry.c (CVE-2020-0182)

  • libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c (CVE-2020-12767)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.9 Release Notes linked from the References section.

OSVersionArchitecturePackageVersionFilename
RedHat7ppc64lelibexif-debuginfo<Β 0.6.22-1.el7libexif-debuginfo-0.6.22-1.el7.ppc64le.rpm
RedHat7i686libexif-debuginfo<Β 0.6.22-1.el7libexif-debuginfo-0.6.22-1.el7.i686.rpm
RedHat7i686libexif-devel<Β 0.6.22-1.el7libexif-devel-0.6.22-1.el7.i686.rpm
RedHat7x86_64libexif<Β 0.6.22-1.el7libexif-0.6.22-1.el7.x86_64.rpm
RedHat7x86_64libexif-devel<Β 0.6.22-1.el7libexif-devel-0.6.22-1.el7.x86_64.rpm
RedHat7ppclibexif-debuginfo<Β 0.6.22-1.el7libexif-debuginfo-0.6.22-1.el7.ppc.rpm
RedHat7x86_64libexif-debuginfo<Β 0.6.22-1.el7libexif-debuginfo-0.6.22-1.el7.x86_64.rpm
RedHat7x86_64libexif-doc<Β 0.6.22-1.el7libexif-doc-0.6.22-1.el7.x86_64.rpm
RedHat7s390xlibexif-doc<Β 0.6.22-1.el7libexif-doc-0.6.22-1.el7.s390x.rpm
RedHat7s390libexif-debuginfo<Β 0.6.22-1.el7libexif-debuginfo-0.6.22-1.el7.s390.rpm
Rows per page:
1-10 of 251

Related

nessus 49
amazon 3
centos 1
oraclelinux 2
redhat 1
openvas 32
gentoo 1
mageia 2
cloudfoundry 3
ubuntu 3
slackware 1
suse 2
freebsd 2
debian 6
osv 12
nvd 7
veracode 6
cve 7
debiancve 7
prion 7
ubuntucve 8
fedora 2
alpinelinux 6
cvelist 7
redhatcve 6
androidsecurity 2
nessus
nessus
Amazon Linux 2 : libexif (ALAS-2020-1523)
2020-10-28 00:00:00
CentOS 7 : libexif (CESA-2020:4040)
2020-10-20 00:00:00
RHEL 7 : libexif (RHSA-2020:4040)
2020-09-29 00:00:00
amazon
amazon
Medium: libexif
2020-10-22 18:12:00
Medium: libexif
2020-06-26 22:52:00
Medium: libexif
2020-07-14 01:51:00
centos
centos
libexif security update
2020-10-20 18:21:32
oraclelinux
oraclelinux
libexif security, bug fix, and enhancement update
2020-10-06 00:00:00
libexif security, bug fix, and enhancement update
2020-11-10 00:00:00
redhat
redhat
(RHSA-2020:4766) Moderate: libexif security, bug fix, and enhancement update
2020-11-03 12:34:21
openvas
openvas
Huawei EulerOS: Security Advisory for libexif (EulerOS-SA-2020-2142)
2020-09-29 00:00:00
Mageia: Security Advisory (MGASA-2020-0238)
2022-01-28 00:00:00
Ubuntu: Security Advisory (USN-4396-1)
2020-06-17 00:00:00
gentoo
gentoo
libexif: Multiple vulnerabilities
2020-07-26 00:00:00
mageia
mageia
Updated libexif packages fix security vulnerability
2020-05-27 22:06:44
Updated libexif packages fix security vulnerability
2019-11-20 00:16:53
cloudfoundry
cloudfoundry
USN-4396-1: libexif vulnerabilities | Cloud Foundry
2020-06-24 00:00:00
USN-4358-1: libexif vulnerabilities | Cloud Foundry
2020-06-24 00:00:00
USN-4277-1: libexif vulnerabilities | Cloud Foundry
2020-02-20 00:00:00
ubuntu
ubuntu
libexif vulnerabilities
2020-06-16 00:00:00
libexif vulnerabilities
2020-05-13 00:00:00
libexif vulnerabilities
2020-02-11 00:00:00
slackware
slackware
[slackware-security] libexif
2020-05-19 20:20:39
suse
suse
Security update for libexif (moderate)
2020-06-11 00:00:00
Security update for libexif (moderate)
2020-03-01 00:00:00
freebsd
freebsd
libexif -- multiple vulnerabilities
2020-05-18 00:00:00
libexif -- privilege escalation
2019-02-06 00:00:00
debian
debian
[SECURITY] [DLA 2222-1] libexif security update
2020-05-28 14:29:35
[SECURITY] [DSA 4618-1] libexif security update
2020-02-06 21:20:38
[SECURITY] [DLA 2100-1] libexif security update
2020-02-10 14:15:51
osv
osv
libexif - security update
2020-05-28 00:00:00
CVE-2020-12767
2020-05-09 21:15:11
CVE-2020-13114
2020-05-21 16:15:10
nvd
nvd
CVE-2020-13114
2020-05-21 16:15:10
CVE-2020-13113
2020-05-21 17:15:10
CVE-2020-12767
2020-05-09 21:15:11
veracode
veracode
Out-of-Bound Write
2020-01-23 07:25:39
Divide-by-zero Error
2020-10-01 03:51:25
Denial Of Service (DoS)
2020-10-01 03:51:25
cve
cve
CVE-2019-9278
2019-09-27 19:15:19
CVE-2020-12767
2020-05-09 21:15:11
CVE-2020-13114
2020-05-21 16:15:10
debiancve
debiancve
CVE-2019-9278
2019-09-27 19:15:19
CVE-2020-13114
2020-05-21 16:15:10
CVE-2020-12767
2020-05-09 21:15:11
prion
prion
Race condition
2020-05-21 17:15:00
Integer overflow
2019-09-27 19:15:00
Design/Logic Flaw
2020-05-09 21:15:00
ubuntucve
ubuntucve
CVE-2019-9278
2019-09-27 00:00:00
CVE-2020-12767
2020-05-09 00:00:00
CVE-2020-13113
2020-05-21 00:00:00
fedora
fedora
[SECURITY] Fedora 32 Update: libexif-0.6.22-1.fc32
2020-06-23 01:22:04
[SECURITY] Fedora 31 Update: libexif-0.6.22-1.fc31
2020-06-25 01:09:51
alpinelinux
alpinelinux
CVE-2020-12767
2020-05-09 21:15:11
CVE-2020-13113
2020-05-21 17:15:10
CVE-2019-9278
2019-09-27 19:15:19
cvelist
cvelist
CVE-2020-12767
2020-05-09 20:17:00
CVE-2020-13114
2020-05-21 15:50:42
CVE-2019-9278
2019-09-27 18:05:14
redhatcve
redhatcve
CVE-2020-12767
2020-05-12 18:42:29
CVE-2020-13114
2020-05-26 19:15:48
CVE-2019-9278
2020-01-08 16:05:57
androidsecurity
androidsecurity
Pixel Update Bulletinβ€”June 2020
2020-06-01 00:00:00
Android 10 Security Release Notes
2019-08-20 00:00:00

0.01 Low

EPSS

Percentile

83.4%

JSON
Related for RHSA-2020:4040
nessus49amazon3centos1oraclelinux2redhat1openvas32gentoo1mageia2cloudfoundry3ubuntu3slackware1suse2freebsd2debian6osv12nvd7veracode6cve7debiancve7prion7ubuntucve8fedora2alpinelinux6cvelist7redhatcve6androidsecurity2