CVE-2018-19535medium
New! CVE Severity Now Using CVSS v3
The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
Description
In Exiv2 0.26 and previous versions, PngChunk::readRawProfile in pngchunk_int.cpp may cause a denial of service (application crash due to a heap-based buffer over-read) via a crafted PNG file.
References
https://access.redhat.com/errata/RHSA-2019:2101
https://github.com/Exiv2/exiv2/issues/428
https://github.com/Exiv2/exiv2/pull/430
https://lists.debian.org/debian-lts-announce/2019/02/msg00038.html
Details
Source: MITRE
Published: 2018-11-26
Updated: 2019-07-15
Type: CWE-125
Risk Information
CVSS v2
Base Score: 4.3
Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Impact Score: 2.9
Exploitability Score: 8.6
Severity: MEDIUM
CVSS v3
Base Score: 6.5
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Impact Score: 3.6
Exploitability Score: 2.8
Severity: MEDIUM
Vulnerable Software
Configuration 1
OR
cpe:2.3:a:exiv2:exiv2:*:*:*:*:*:*:*:* versions up to 0.26 (inclusive)
Configuration 2
OR
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 145828 | CentOS 8 : exiv2 (CESA-2020:1577) | Nessus | CentOS Local Security Checks | high |
| 143032 | RHEL 8 : exiv2 (RHSA-2020:1577) | Nessus | Red Hat Local Security Checks | high |
| 132507 | NewStart CGSL CORE 5.05 / MAIN 5.05 : exiv2 Multiple Vulnerabilities (NS-SA-2019-0229) | Nessus | NewStart CGSL Local Security Checks | high |
| 132293 | EulerOS 2.0 SP3 : exiv2 (EulerOS-SA-2019-2576) | Nessus | Huawei Local Security Checks | high |
| 131867 | EulerOS 2.0 SP2 : exiv2 (EulerOS-SA-2019-2375) | Nessus | Huawei Local Security Checks | high |
| 131343 | EulerOS 2.0 SP8 : exiv2 (EulerOS-SA-2019-2277) | Nessus | Huawei Local Security Checks | medium |
| 130853 | EulerOS 2.0 SP5 : exiv2 (EulerOS-SA-2019-2144) | Nessus | Huawei Local Security Checks | critical |
| 130235 | Amazon Linux 2 : exiv2 (ALAS-2019-1339) | Nessus | Amazon Linux Local Security Checks | high |
| 129886 | NewStart CGSL CORE 5.04 / MAIN 5.04 : exiv2 Multiple Vulnerabilities (NS-SA-2019-0188) | Nessus | NewStart CGSL Local Security Checks | high |
| 129015 | CentOS 7 : exiv2 (CESA-2019:2101) | Nessus | CentOS Local Security Checks | high |
| 128216 | Scientific Linux Security Update : exiv2 on SL7.x x86_64 (20190806) | Nessus | Scientific Linux Local Security Checks | high |
| 127672 | RHEL 7 : exiv2 (RHSA-2019:2101) | Nessus | Red Hat Local Security Checks | high |
| 126746 | Ubuntu 16.04 LTS / 18.04 LTS / 18.10 / 19.04 : Exiv2 vulnerabilities (USN-4056-1) | Nessus | Ubuntu Local Security Checks | medium |
| 122454 | Debian DLA-1691-1 : exiv2 security update | Nessus | Debian Local Security Checks | medium |