Bug 1188756 (CVE-2021-31292)

Summary: VUL-1: CVE-2021-31292: exiv2: An integer overflow in CrwMap:encode0x1810 allows attackers to trigger a heap-based buffer overflow and cause a denial of service via crafted metadata.
Product: [Novell Products] SUSE Security Incidents Reporter: Robert Frohl <rfrohl>
Component: IncidentsAssignee: Dirk Mueller <dmueller>
Status: RESOLVED INVALID QA Contact: Security Team bot <security-team>
Severity: Minor    
Priority: P5 - None CC: smash_bz
Version: unspecified   
Target Milestone: ---   
Hardware: Other   
OS: Other   
URL: https://smash.suse.de/issue/305175/
Whiteboard:
Found By: Security Response Team Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---

Description Robert Frohl 2021-07-27 14:57:11 UTC
CVE-2021-31292

An integer overflow in CrwMap::encode0x1810 of Exiv2 0.27.3 allows attackers to
trigger a heap-based buffer overflow and cause a denial of service (DOS) via
crafted metadata.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-31292
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-31292
https://github.com/Exiv2/exiv2/issues/1530
Comment 1 Robert Frohl 2021-07-27 15:04:43 UTC
does not affect any version of SLE and already fixed in openSUSE:Factory, closing