Lucene search
Veracode Vulnerability DatabaseVERACODE:7730HistoryNov 09, 2018 - 7:12 a.m.
Denial Of Service (DoS)
2018-11-0907:12:55
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5
0.006 Low
EPSS
Percentile
79.0%
libexiv2.so is vulnerable to denial of service(DoS). The attack can be caused due to a flaw in updating resourcesLength parameter in the readMetadata function of psdimage.cpp.
References
lists.opensuse.org/opensuse-security-announce/2020-04/msg00009.html
access.redhat.com/errata/RHSA-2019:2101
github.com/Exiv2/exiv2/commit/b7c71f3ad0386cd7af3b73443c0615ada073f0d5
github.com/Exiv2/exiv2/issues/426
github.com/Exiv2/exiv2/pull/518
lists.debian.org/debian-lts-announce/2019/02/msg00038.html
lists.debian.org/debian-lts-announce/2023/01/msg00004.html
usn.ubuntu.com/4056-1/
Related
osv
osv
CVE-2018-19108
2018-11-08 08:29:00
exiv2 - security update
2019-02-26 00:00:00
exiv2 - security update
2023-01-10 00:00:00
ubuntucve
ubuntucve
CVE-2018-19108
2018-11-08 00:00:00
nvd
nvd
CVE-2018-19108
2018-11-08 08:29:00
cvelist
cvelist
CVE-2018-19108
2018-11-08 00:00:00
debiancve
debiancve
CVE-2018-19108
2018-11-08 08:29:00
redhatcve
redhatcve
CVE-2018-19108
2018-11-12 23:20:16
cve
cve
CVE-2018-19108
2018-11-08 08:29:00
prion
prion
Integer overflow
2018-11-08 08:29:00
openvas
openvas
Debian: Security Advisory (DLA-1691-1)
2019-02-26 00:00:00
Ubuntu: Security Advisory (USN-4056-1)
2019-07-16 00:00:00
openSUSE: Security Advisory for exiv2 (openSUSE-SU-2020:0482-1)
2020-04-09 00:00:00
debian
debian
[SECURITY] [DLA 1691-1] exiv2 security update
2019-02-26 21:17:33
[SECURITY] [DLA 3265-1] exiv2 security update
2023-01-10 17:02:40
nessus
nessus
Debian DLA-1691-1 : exiv2 security update
2019-02-27 00:00:00
Ubuntu 16.04 LTS / 18.04 LTS : Exiv2 vulnerabilities (USN-4056-1)
2019-07-16 00:00:00
openSUSE Security Update : exiv2 (openSUSE-2020-482)
2020-04-10 00:00:00
ubuntu
ubuntu
Exiv2 vulnerabilities
2019-07-15 00:00:00
suse
suse
Security update for exiv2 (moderate)
2020-04-09 00:00:00
amazon
amazon
Low: exiv2
2019-10-21 18:01:00
oraclelinux
oraclelinux
exiv2 security, bug fix, and enhancement update
2019-08-13 00:00:00
exiv2 security, bug fix, and enhancement update
2020-05-05 00:00:00
centos
centos
exiv2 security update
2019-09-18 20:54:21
redhat
redhat
(RHSA-2019:2101) Low: exiv2 security, bug fix, and enhancement update
2019-08-06 08:00:57
(RHSA-2020:1577) Moderate: exiv2 security, bug fix, and enhancement update
2020-04-28 08:52:31
almalinux
almalinux
Moderate: exiv2 security, bug fix, and enhancement update
2020-04-28 08:52:31
rocky
rocky
exiv2 security, bug fix, and enhancement update
2020-04-28 08:52:31