Packages
- exempi - library to parse XMP metadata
Details
It was discovered that Exempi incorrectly handled certain media files. If a
user or automated system were tricked into opening a specially crafted
file, a remote attacker could cause Exempi to stop responding or crash,
resulting in a denial of service, or possibly execute arbitrary code.
It was discovered that Exempi incorrectly handled certain media files. If a
user or automated system were tricked into opening a specially crafted
file, a remote attacker could cause Exempi to stop responding or crash,
resulting in a denial of service, or possibly execute arbitrary code.
Update instructions
In general, a standard system update will make all the necessary changes.
Learn more about how to get the fixes.The problem can be corrected by updating your system to the following package versions:
| Ubuntu Release | Package Version | ||
|---|---|---|---|
| 22.04 jammy | libexempi8 – 2.5.2-1ubuntu0.22.04.1 | ||
| exempi – 2.5.2-1ubuntu0.22.04.1 | |||
| 21.10 impish | libexempi8 – 2.5.2-1ubuntu0.21.10.1 | ||
| exempi – 2.5.2-1ubuntu0.21.10.1 | |||
| 20.04 focal | libexempi8 – 2.5.1-1ubuntu0.1 | ||
| exempi – 2.5.1-1ubuntu0.1 | |||
| 18.04 bionic | exempi – 2.4.5-2ubuntu0.1 | ||
| libexempi3 – 2.4.5-2ubuntu0.1 | |||
Reduce your security exposure
Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines.
References
- CVE-2021-42532
- CVE-2021-42531
- CVE-2021-42530
- CVE-2021-42529
- CVE-2021-42528
- CVE-2021-40732
- CVE-2021-40716
- CVE-2021-39847
- CVE-2021-36064
- CVE-2021-36058
- CVE-2021-42532
- CVE-2021-42531
- CVE-2021-42530
- CVE-2021-42529
- CVE-2021-42528
- CVE-2021-40732
- CVE-2021-40716
- CVE-2021-39847
- CVE-2021-36064
- CVE-2021-36058
- CVE-2021-36056
- CVE-2021-36055
- CVE-2021-36054
- CVE-2021-36053
- CVE-2021-36052
- CVE-2021-36051
- CVE-2021-36050
- CVE-2021-36048
- CVE-2021-36047
- CVE-2021-36046
- CVE-2021-36045
- CVE-2018-12648