AVG-1772 log

Package exiv2
Status Fixed
Severity Low
Type multiple issues
Affected 0.27.3-1
Fixed 0.27.4-1
Current 0.27.4-2 [extra]
Ticket None
Created Mon Apr 5 20:53:40 2021
Advisory Pending
Issue Severity Remote Type Description
CVE-2021-32617 Low Yes Denial of service
An inefficient algorithm (quadratic complexity) was found in Exiv2 before version 0.27.4. The inefficient algorithm is triggered when Exiv2 is used to write...
CVE-2021-29623 Low Yes Information disclosure
A read of uninitialized memory was found in Exiv2 before version 0.27.4. The read of uninitialized memory is triggered when Exiv2 is used to read the...
CVE-2021-29473 Low Yes Denial of service
An out-of-bounds read was found in Exiv2 before version 0.27.4. An attacker could potentially exploit the vulnerability to cause a denial of service by...
CVE-2021-29470 Low Yes Denial of service
An out-of-bounds read was found in Exiv2 before version 0.27.4. The out-of-bounds read is triggered when Exiv2 is used to write metadata into a crafted...
CVE-2021-29464 Low Yes Arbitrary code execution
A heap buffer overflow was found in Exiv2 before version 0.27.4. The heap overflow is triggered when Exiv2 is used to write metadata into a crafted image...
CVE-2021-29463 Low Yes Denial of service
An out-of-bounds read was found in Exiv2 before version 0.27.4. The out-of-bounds read is triggered when Exiv2 is used to write metadata into a crafted...
CVE-2021-29458 Low Yes Denial of service
An out-of-bounds read was found in Exiv2 before version 0.27.4. The out-of-bounds read is triggered when Exiv2 is used to write metadata into a crafted...
CVE-2021-29457 Low Yes Arbitrary code execution
A heap buffer overflow was found in Exiv2 before version 0.27.4. The heap overflow is triggered when Exiv2 is used to write metadata into a crafted image...
CVE-2021-3482 Low Yes Arbitrary code execution
A security issue was found in Exiv2 in versions before version 0.27.4. Improper input validation of the rawData.size property in Jp2Image::readMetadata() in...