VYPR

rpm package

suse/libexif&distro=SUSE Linux Enterprise Server 11 SP4-LTSS

pkg:rpm/suse/libexif&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS

Vulnerabilities (2)

  • CVE-2019-9278Sep 27, 2019
    affected < 0.6.17-2.14.7.2fixed 0.6.17-2.14.7.2

    In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media content provider with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: A

  • CVE-2018-20030Feb 20, 2019
    affected < 0.6.17-2.14.7.2fixed 0.6.17-2.14.7.2

    An error when processing the EXIF_IFD_INTEROPERABILITY and EXIF_IFD_EXIF tags within libexif version 0.6.21 can be exploited to exhaust available CPU resources.