Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 734
Alerts This Week
Warning Icon 1 734

Fedora 42 mingw-exiv2 Important Denial of Service Fix 2026-592e4238fa

fedora
Calendar Grey April 12, 2026
Dist Fedora Esm H88
Critical updates for mingw-exiv2 in Fedora 42 address important denial of service risks with new security advisories.
Update to exiv2-0.28.8.

Summary

MinGW Windows exiv2 library.

Update Information:

Update to exiv2-0.28.8.

Change Log

* Sat Mar 7 2026 Sandro Mani - 0.28.8-1 - Update to 0.28.8 * Fri Jan 16 2026 Fedora Release Engineering - 0.28.7-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild

References


[ 1 ] Bug #2453392 - CVE-2026-25884 mingw-exiv2: Exiv2: Denial of service via out-of-bounds read in CRW image parser [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2453392 [ 2 ] Bug #2453394 - CVE-2026-27596 mingw-exiv2: Exiv2: Denial of Service via out-of-bounds read in preview component [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2453394 [ 3 ] Bug #2453396 - CVE-2026-27631 mingw-exiv2: Exiv2: Denial of Service via integer overflow in preview component [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2453396

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-592e4238fa' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
important
Lowest
Low
Medium
High
Critical

Name: mingw-exiv2
Product: Fedora 42
Version: 0.28.8
Release: 1.fc42
Summary: MinGW Windows exiv2 library

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.