Vulnerability Manager Plus

exiv2 security update(DSA-4238-1) exiv2_0.25-3.1+deb9u1_amd64.deb

Risk Information

Base Score

9.8

MODERATE

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score

Exploitation Probability

No records found

CVE Information

Source CVE
CVE-2018-11531

Associated CVE
CVE-2018-11531
CVE-2018-12264
CVE-2018-10958
CVE-2018-10999
CVE-2018-10998

Patch Details

No records found

References

https://github.com/Exiv2/exiv2/issues/283
https://github.com/Exiv2/exiv2/issues/302
https://github.com/Exiv2/exiv2/issues/303
https://github.com/Exiv2/exiv2/issues/306
https://github.com/Exiv2/exiv2/issues/366
https://github.com/TeamSeri0us/pocs/blob/master/exiv2/2-out-of-read-Poc
https://lists.debian.org/debian-lts-announce/2018/06/msg00010.html
https://lists.debian.org/debian-lts-announce/2018/10/msg00012.html
https://security.gentoo.org/glsa/201811-14
https://usn.ubuntu.com/3700-1/
https://www.debian.org/security/2018/dsa-4238