compat-exiv2-026-0.26-3.el7

Release date:

Thursday, August 19, 2021 - 20:50

Subject:

Affected Channels:

Asianux Server 7 for x86_64

Severity:

High

Description:

Exiv2 is a C++ library to access image metadata, supporting read and write access to the Exif, IPTC and XMP metadata, Exif MakerNote support, extract and delete methods for Exif thumbnails, classes to access Ifd, and support for various image formats.

Security Fix(es):

* exiv2: Heap-based buffer overflow vulnerability in jp2image.cpp (CVE-2021-31291)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2021-31291
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2021-29457. Reason: This candidate is a duplicate of CVE-2021-29457. Notes: All CVE users should reference CVE-2021-29457 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.

Solution:

Update packages.

CVEs:

CVE-2021-31291
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2021-29457. Reason: This candidate is a duplicate of CVE-2021-29457. Notes: All CVE users should reference CVE-2021-29457 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.

Additional Info:

N/A

Download:

SRPMS

compat-exiv2-026-0.26-3.el7.src.rpm
MD5: 617b5f1d27461de91681c3312b77d673
SHA-256: 0d1bf5e373c07a103076d5a91c57abd4d0fc26399f9564e1caba68a07541c133
Size: 5.44 MB

Asianux Server 7 for x86_64

compat-exiv2-026-0.26-3.el7.x86_64.rpm
MD5: 8266997fe38c29c9b96d6cdf83b07fab
SHA-256: 5a856b70f980b6e802585c115e9cbbe6561aa6fadcb18f0bd235fe5b2133cb7e
Size: 827.00 kB
compat-exiv2-026-0.26-3.el7.i686.rpm
MD5: 35f97b34b62b5280489ad019460e04d9
SHA-256: 23ffc715dcb2ef8c6b8b497abc19be4a6869c702c1c64b3383ee78fedcb1bf1a
Size: 815.00 kB

Main menu

You are here

compat-exiv2-026-0.26-3.el7