Debian 10 Buster: DLA-3585-1 Moderate: Exempi Buffer Overflow Advisory
debian lts
September 25, 2023
Multiple vulneratibilities were found in exempi, an implementation of XMP (Extensible Metadata Platform)
Topics Covered
Summary
CVE-2020-18651
A Buffer Overflow vulnerability was found
in function ID3_Support::ID3v2Frame::getFrameValue
allows remote attackers to cause a denial of service.
CVE-2020-18652
A Buffer Overflow vulnerability was found in
WEBP_Support.cpp allows remote attackers to cause a
denial of service.
CVE-2021-36045
An out-of-bounds read vulnerability was found
that could lead to disclosure of arbitrary memory.
CVE-2021-36046
A memory corruption vulnerability was found,
potentially resulting in arbitrary code execution
in the context of the current use
CVE-2021-36047
An Improper Input Validation vulnerability was found,
potentially resulting in arbitrary
code execution in the context of the current use.
CVE-2021-36048
An Improper Input Validation was found,
potentially resulting in arbitrary
code execution in the context of the current user.
CVE-2021-36050
A buffer overflow vulnerability was found,
PREVIOUS
NEXT
Package: exempi
Version: 2.5.0-2+deb10u1
CVE ID: CVE-2020-18651 CVE-2020-18652 CVE-2021-36045 CVE-2021-36046
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!