Oval Definition:oval:com.redhat.rhsa:def:20213152
Revision Date:2021-08-16Version:636
Title:RHSA-2021:3152: exiv2 security update (Important)
Description:Exiv2 is a C++ library to access image metadata, supporting read and write access to the Exif, IPTC and XMP metadata, Exif MakerNote support, extract and delete methods for Exif thumbnails, classes to access Ifd, and support for various image formats.

Security Fix(es):

  • exiv2: Heap-based buffer overflow vulnerability in jp2image.cpp (CVE-2021-31291)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2021-31291
    RHSA-2021:3152
    Platform(s):Red Hat Enterprise Linux 8
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 8 is installed
  • OR Red Hat CoreOS 4 is installed
  • AND
  • exiv2 is earlier than 0:0.27.3-3.el8_4
  • AND exiv2 is signed with Red Hat redhatrelease2 key
  • exiv2-devel is earlier than 0:0.27.3-3.el8_4
  • AND exiv2-devel is signed with Red Hat redhatrelease2 key
  • exiv2-doc is earlier than 0:0.27.3-3.el8_4
  • AND exiv2-doc is signed with Red Hat redhatrelease2 key
  • exiv2-libs is earlier than 0:0.27.3-3.el8_4
  • AND exiv2-libs is signed with Red Hat redhatrelease2 key
    • BACK