Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

CVE-2021-37623

Published: 9 August 2021

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An infinite loop was found in Exiv2 versions v0.27.4 and earlier. The infinite loop is triggered when Exiv2 is used to modify the metadata of a crafted image file. An attacker could potentially exploit the vulnerability to cause a denial of service, if they can trick the victim into running Exiv2 on a crafted image file. Note that this bug is only triggered when deleting the IPTC data, which is a less frequently used Exiv2 operation that requires an extra command line option (`-d I rm`). The bug is fixed in version v0.27.5.

Notes

AuthorNote
leosilva 
bionic, xenial not affected , code not present.

Priority

Medium

Cvss 3 Severity Score

5.5

Score breakdown

Status

Package Release Status
exiv2
Launchpad, Ubuntu, Debian 		bionic Not vulnerable
(code not present)
focal
Released (0.27.2-8ubuntu2.6)
hirsute
Released (0.27.3-3ubuntu1.5)
impish
Released (0.27.3-3ubuntu4)
jammy
Released (0.27.3-3ubuntu4)
trusty Does not exist

upstream Needs triage

xenial Not vulnerable
(code not present)
Patches:
upstream: https://github.com/Exiv2/exiv2/pull/1790/commits/ed90f646bf243b12baaa27aa5fb6db9dcfb774f4
upstream: https://github.com/Exiv2/exiv2/pull/1790/commits/6eec038592ac51d982ecd4e935ce206e22879c58
upstream: https://github.com/Exiv2/exiv2/pull/1790/commits/b3c63dac854f27c366aeaba8b46a3125cf18a27b
upstream: https://github.com/Exiv2/exiv2/pull/1790/commits/52ecb134b954c1e287834a0d3f2cfaba2c542f78
upstream: https://github.com/Exiv2/exiv2/pull/1790/commits/147e6d3645f183c5a6faa800761056db57551055
upstream: https://github.com/Exiv2/exiv2/pull/1790/commits/2637af0854033e2cc5d8eb956e0fd62049b789d1
upstream: https://github.com/Exiv2/exiv2/pull/1790/commits/b5cbb479f8d3c95cbf176f8030062a4171f1595f

Severity score breakdown

Parameter Value
Base score 5.5
Attack vector Local
Attack complexity Low
Privileges required None
User interaction Required
Scope Unchanged
Confidentiality None
Integrity impact None
Availability impact High
Vector CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

References

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

Further reading