Lucene search
Veracode Vulnerability DatabaseVERACODE:25085HistoryApr 29, 2020 - 2:39 a.m.
Denial Of Service (DoS)
2020-04-2902:39:15
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12
EPSS
0.001
Percentile
35.9%
exiv2 is vulnerable to denial of service (DoS). The vulnerability exists through excessive memory allocation in Exiv2::Jp2Image::readMetadata function in jp2image.cpp.
References
www.securityfocus.com/bid/102477
www.securityfocus.com/bid/102477
access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.2_release_notes/index
access.redhat.com/errata/RHSA-2020:1577
access.redhat.com/security/updates/classification/#moderate
github.com/Exiv2/exiv2/issues/202
github.com/Exiv2/exiv2/issues/202
Related
prion
prion
Design/Logic Flaw
2018-01-03 09:29:00
osv
osv
CVE-2018-4868
2018-01-03 09:29:00
Moderate: exiv2 security, bug fix, and enhancement update
2020-04-28 08:52:31
Moderate: exiv2 security, bug fix, and enhancement update
2020-04-28 08:52:31
cvelist
cvelist
CVE-2018-4868
2018-01-03 09:00:00
redhatcve
redhatcve
CVE-2018-4868
2019-04-04 13:20:26
cve
cve
CVE-2018-4868
2018-01-03 09:29:00
debiancve
debiancve
CVE-2018-4868
2018-01-03 09:29:00
ubuntucve
ubuntucve
CVE-2018-4868
2018-01-03 00:00:00
nvd
nvd
CVE-2018-4868
2018-01-03 09:29:00
openvas
openvas
Huawei EulerOS: Security Advisory for exiv2 (EulerOS-SA-2020-1003)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for exiv2 (EulerOS-SA-2019-2710)
2020-01-23 00:00:00
nessus
nessus
EulerOS 2.0 SP8 : exiv2 (EulerOS-SA-2020-1003)
2020-01-02 00:00:00
EulerOS 2.0 SP5 : exiv2 (EulerOS-SA-2019-2710)
2019-12-23 00:00:00
RHEL 7 : exiv2 (RHSA-2019:2101)
2019-08-12 00:00:00
centos
centos
exiv2 security update
2019-09-18 20:54:21
redhat
redhat
(RHSA-2019:2101) Low: exiv2 security, bug fix, and enhancement update
2019-08-06 08:00:57
(RHSA-2020:1577) Moderate: exiv2 security, bug fix, and enhancement update
2020-04-28 08:52:31
oraclelinux
oraclelinux
exiv2 security, bug fix, and enhancement update
2020-05-05 00:00:00
rocky
rocky
exiv2 security, bug fix, and enhancement update
2020-04-28 08:52:31
almalinux
almalinux
Moderate: exiv2 security, bug fix, and enhancement update
2020-04-28 08:52:31