Opened 4 years ago
Closed 3 years ago
#15527 closed enhancement (fixed)
exiv2-0.27.5
| Reported by: | Bruce Dubbs | Owned by: | Douglas R. Reno |
|---|---|---|---|
| Priority: | elevated | Milestone: | 11.1 |
| Component: | BOOK | Version: | git |
| Severity: | normal | Keywords: | |
| Cc: |
Description ¶
New point version.
Change History (5)
comment:1 by , 4 years ago
| Priority: | normal → low |
|---|---|
| Summary: | exiv2-0.27.5 → exiv2-0.27.5-rc2 (wait for 0.27.5) |
comment:2 by , 3 years ago
| Priority: | low → elevated |
|---|---|
| Summary: | exiv2-0.27.5-rc2 (wait for 0.27.5) → exiv2-0.27.5 |
comment:3 by , 3 years ago
| Owner: | changed from to |
|---|---|
| Status: | new → assigned |
comment:4 by , 3 years ago
No CVE for PR #1882, but it is a denial of service issue (out of memory crash, allocating 2,560MB for a simple image file)
PR #1769 is assigned CVE-2021-37620, and is an out-of-bounds read (another denial of service). Rating is 5.5 MEDIUM
PR #1778 is assigned CVE-2021-37621, and is an infinite loop bug (another denial of service). Rating is 5.5 MEDIUM
PR #1767 has no CVE, but it is another denial of service vulnerability (NULL pointer dereference)
PR #1759 is assigned CVE-2021-37618, and is another denial of service vulnerability (due to an out-of-bounds read). Rating is 5.5 MEDIUM
PR #1750 has no CVE, but is a denial of service vulnerability caused by an integer divide by zero.
In total we've got 6 security vulnerabilities fixed, with 3 of them having CVEs. I'll make sure to note that in the Security Advisory
comment:5 by , 3 years ago
| Resolution: | → fixed |
|---|---|
| Status: | assigned → closed |
Fixed at a263b75559f449391b607c11655973989485b51e
Security advisory incoming
released on October 21st, 2021, with several security fixes:
The other changes:
BMFF bug fixes including CR3 previews Security fixes libFuzzer target (for improved security testing) Exiv2 monitored by oss-fuzz Minor bugs and fixes