First Last Prev Next    This bug is not in your last search results.
Bug 1117513 - (CVE-2018-19607) VUL-1: CVE-2018-19607: exiv2: Exiv2:isoSpeed in easyaccess.cpp in Exiv2 v0.27-RC2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file.
(CVE-2018-19607)
VUL-1: CVE-2018-19607: exiv2: Exiv2:isoSpeed in easyaccess.cpp in Exiv2 v0.27...
Status: RESOLVED FIXED
Classification: Novell Products
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents
unspecified
Other Other
: P4 - Low : Minor
: ---
Assigned To: Security Team bot
Security Team bot
https://smash.suse.de/issue/219711/
CVSSv2:NVD:CVE-2018-19607:4.3:(AV:N/A...
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2018-11-27 16:10 UTC by Marcus Meissner
Modified: 2020-07-10 14:42 UTC (History)
4 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
poc9-isoSpeed (1.00 KB, application/octet-stream)
2018-11-27 16:12 UTC, Marcus Meissner 		Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Marcus Meissner 2018-11-27 16:10:32 UTC 
CVE-2018-19607

Exiv2::isoSpeed in easyaccess.cpp in Exiv2 v0.27-RC2 allows remote attackers to
cause a denial of service (NULL pointer dereference and application crash) via a
crafted file.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-19607
http://people.canonical.com/~ubuntu-security/cve/2018/CVE-2018-19607.html
https://github.com/Exiv2/exiv2/issues/561
Comment 1 Marcus Meissner 2018-11-27 16:12:20 UTC 
Created attachment 791036 [details]
poc9-isoSpeed

QA REPRODUCER:

exiv2 poc9-isoSpeed

should not crash
Comment 3 Dirk Mueller 2020-03-24 21:29:58 UTC 
This code is only in v0.26, so only SLE-15 affected.

Added patch to the submission.
Comment 5 Swamp Workflow Management 2020-04-03 19:19:29 UTC 
SUSE-SU-2020:0921-1: An update that fixes 11 vulnerabilities is now available.

Category: security (moderate)
Bug References: 1040973,1068873,1088424,1097599,1097600,1109175,1109176,1109299,1115364,1117513,1142684
CVE References: CVE-2017-1000126,CVE-2017-9239,CVE-2018-12264,CVE-2018-12265,CVE-2018-17229,CVE-2018-17230,CVE-2018-17282,CVE-2018-19108,CVE-2018-19607,CVE-2018-9305,CVE-2019-13114
Sources used:
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1 (src):    exiv2-0.26-6.8.1
SUSE Linux Enterprise Module for Desktop Applications 15-SP1 (src):    exiv2-0.26-6.8.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 6 Swamp Workflow Management 2020-04-08 22:14:27 UTC 
openSUSE-SU-2020:0482-1: An update that fixes 11 vulnerabilities is now available.

Category: security (moderate)
Bug References: 1040973,1068873,1088424,1097599,1097600,1109175,1109176,1109299,1115364,1117513,1142684
CVE References: CVE-2017-1000126,CVE-2017-9239,CVE-2018-12264,CVE-2018-12265,CVE-2018-17229,CVE-2018-17230,CVE-2018-17282,CVE-2018-19108,CVE-2018-19607,CVE-2018-9305,CVE-2019-13114
Sources used:
openSUSE Leap 15.1 (src):    exiv2-0.26-lp151.7.3.1
Comment 7 Alexandros Toptsoglou 2020-07-10 14:42:53 UTC 
Done
First Last Prev Next    This bug is not in your last search results.