#15527 closed enhancement (fixed)

exiv2-0.27.5

Reported by: Bruce Dubbs Owned by: Douglas R. Reno
Priority: elevated Milestone: 11.1
Component: BOOK Version: git
Severity: normal Keywords:
Cc:

Description

New point version.

Change History (5)

comment:1 by Xi Ruoyao, 15 months ago

Priority: normallow
Summary: exiv2-0.27.5exiv2-0.27.5-rc2 (wait for 0.27.5)

comment:2 by pierre, 13 months ago

Priority: lowelevated
Summary: exiv2-0.27.5-rc2 (wait for 0.27.5)exiv2-0.27.5

released on October 21st, 2021, with several security fixes:

The other changes:

    BMFF bug fixes including CR3 previews
    Security fixes
    libFuzzer target (for improved security testing)
    Exiv2 monitored by oss-fuzz
    Minor bugs and fixes

comment:3 by Douglas R. Reno, 13 months ago

Owner: changed from blfs-book to Douglas R. Reno
Status: newassigned

comment:4 by Douglas R. Reno, 13 months ago

No CVE for PR #1882, but it is a denial of service issue (out of memory crash, allocating 2,560MB for a simple image file)

PR #1769 is assigned CVE-2021-37620, and is an out-of-bounds read (another denial of service). Rating is 5.5 MEDIUM

PR #1778 is assigned CVE-2021-37621, and is an infinite loop bug (another denial of service). Rating is 5.5 MEDIUM

PR #1767 has no CVE, but it is another denial of service vulnerability (NULL pointer dereference)

PR #1759 is assigned CVE-2021-37618, and is another denial of service vulnerability (due to an out-of-bounds read). Rating is 5.5 MEDIUM

PR #1750 has no CVE, but is a denial of service vulnerability caused by an integer divide by zero.

In total we've got 6 security vulnerabilities fixed, with 3 of them having CVEs. I'll make sure to note that in the Security Advisory

comment:5 by Douglas R. Reno, 13 months ago

Resolution: fixed
Status: assignedclosed

Fixed at a263b75559f449391b607c11655973989485b51e

Security advisory incoming

Note: See TracTickets for help on using tickets.