Opened 6 weeks ago

Closed 5 weeks ago

#21130 closed enhancement (fixed)

exiv2-0.28.5

Reported by: Bruce Dubbs Owned by: Douglas R. Reno
Priority: elevated Milestone: 12.3
Component: BOOK Version: git
Severity: normal Keywords:
Cc:

Description

New point version.

Change History (5)

comment:1 by Douglas R. Reno, 6 weeks ago

Priority: normalelevated 
Changes from version 0.28.4 to 0.28.5
-------------------------------------

Release Notes:

* https://github.com/Exiv2/exiv2/issues/3181
* https://github.com/Exiv2/exiv2/milestone/16?closed=1

This release fixes a use-after-free vulnerability in `tiffcomposite_int.cpp`:

* [CVE-2025-26623](https://github.com/Exiv2/exiv2/security/advisories/GHSA-38h4-fx85-qcx7)

Versions prior to v0.28.0, such as v0.27.7, are not affected by CVE-2025-26623.

https://github.com/Exiv2/exiv2/security/advisories/GHSA-38h4-fx85-qcx7 states that it's a buffer overflow that allows for arbitrary code execution if a user acts upon a crafted file.

comment:2 by Xi Ruoyao, 5 weeks ago

Milestone: 12.412.3

Promote the security fixes for 12.3 following the decision to make another tagging round.

comment:3 by Douglas R. Reno, 5 weeks ago

Owner: changed from blfs-book to Douglas R. Reno
Status: newassigned

comment:4 by Douglas R. Reno, 5 weeks ago

Fixed at 2666533887f35afe79f0afcca26b1b4ef92e1104

Security advisory incoming shortly

comment:5 by Douglas R. Reno, 5 weeks ago

Resolution: fixed
Status: assignedclosed

SA-12.2-096 issued

Note: See TracTickets for help on using tickets.