rpm package
suse/libexif&distro=SUSE Linux Enterprise Module for Desktop Applications 15
pkg:rpm/suse/libexif&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2019-9278 | — | < 0.6.21-5.3.1 | 0.6.21-5.3.1 | Sep 27, 2019 | In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media content provider with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: A | ||
| CVE-2018-20030 | — | < 0.6.21-5.3.1 | 0.6.21-5.3.1 | Feb 20, 2019 | An error when processing the EXIF_IFD_INTEROPERABILITY and EXIF_IFD_EXIF tags within libexif version 0.6.21 can be exploited to exhaust available CPU resources. |
- CVE-2019-9278Sep 27, 2019affected < 0.6.21-5.3.1fixed 0.6.21-5.3.1
In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media content provider with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: A
- CVE-2018-20030Feb 20, 2019affected < 0.6.21-5.3.1fixed 0.6.21-5.3.1
An error when processing the EXIF_IFD_INTEROPERABILITY and EXIF_IFD_EXIF tags within libexif version 0.6.21 can be exploited to exhaust available CPU resources.