Ubuntu
exiv2 package

exiv2 0.27.3-3ubuntu1.1 source package in Ubuntu

Changelog

exiv2 (0.27.3-3ubuntu1.1) hirsute-security; urgency=medium

  * SECURITY UPDATE: Heap buffer overflow
    - debian/patches/CVE-2021-3482-*.patch: fix buffer overflow
      in src/jp2image.cpp and adds tests test/data/poc_1522.jp2,
      tests/bugfixes/github/test_issue_1522.py.
    - debian/source/include-binaries: add poc_1522.jp2 entry.
    - CVE-2021-3482
  * SECURITY UPDATE: An out of buffer access
    - debian/patches/CVE-2021-29457.patch: fix in src/jp2image.cpp
      (LP: #1923479)
    - CVE-2021-29457
  * SECURITY UPDATE: Integer overflow
    - debian/patches/CVE-2021-29458.patch: fix in src/crwimage_int.cpp
      (LP: #1923479)
    - CVE-2021-29458
  * SECURITY UPDATE: Out-of-bounds
    - debian/patches/CVE-2021-29470-*.patch: Add more bound checks in
      Jp2Image::encodeJp2Header and add some tests from/for github.
    - CVE-2021-29470

 -- Leonidas Da Silva Barbosa <email address hidden>  Mon, 12 Apr 2021 14:47:29 -0300

Upload details

Uploaded by:
Leonidas S. Barbosa
Uploaded to:
Hirsute
Original maintainer:
Ubuntu Developers
Architectures:
any all
Section:
graphics
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
exiv2_0.27.3.orig.tar.gz 25.0 MiB 6398bc743c32b85b2cb2a604273b8c90aa4eb0fd7c1700bf66cbb2712b4f00c1
exiv2_0.27.3-3ubuntu1.1.debian.tar.xz 62.9 KiB 562bd315a8d2c286b62e4128e74b0f903167028e60b04d0d343a733707f94a4b
exiv2_0.27.3-3ubuntu1.1.dsc 2.3 KiB 4b189b3032f4d8dac5a9fdfc0598669df3df809fa594b5a61eb7871b4f5b4616

View changes file

Binary packages built by this source

exiv2: No summary available for exiv2 in ubuntu hirsute.

No description available for exiv2 in ubuntu hirsute.

exiv2-dbgsym: No summary available for exiv2-dbgsym in ubuntu hirsute.

No description available for exiv2-dbgsym in ubuntu hirsute.

libexiv2-27: No summary available for libexiv2-27 in ubuntu hirsute.

No description available for libexiv2-27 in ubuntu hirsute.

libexiv2-27-dbgsym: No summary available for libexiv2-27-dbgsym in ubuntu hirsute.

No description available for libexiv2-27-dbgsym in ubuntu hirsute.

libexiv2-dev: No summary available for libexiv2-dev in ubuntu hirsute.

No description available for libexiv2-dev in ubuntu hirsute.

libexiv2-doc: No summary available for libexiv2-doc in ubuntu hirsute.

No description available for libexiv2-doc in ubuntu hirsute.