REDHAT-BUG-1564281
First published: Thu Apr 05 2018(Updated: )
A flaw was found in Exiv2 0.26, there is a reachable assertion abort in the function Exiv2::DataBuf::DataBuf at include/exiv2/types.hpp. References: <a href="https://bugzilla.novell.com/show_bug.cgi?id=1087879">https://bugzilla.novell.com/show_bug.cgi?id=1087879</a>
| Affected Software | Affected Version | How to fix |
|---|---|---|
| CentOS Dos2unix |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of REDHAT-BUG-1564281?
REDHAT-BUG-1564281 has a high severity due to the reachable assertion abort in Exiv2.
How do I fix REDHAT-BUG-1564281?
To fix REDHAT-BUG-1564281, you should upgrade Exiv2 to the latest version that addresses this vulnerability.
Who is affected by REDHAT-BUG-1564281?
Any users running Exiv2 version 0.26 or earlier are affected by REDHAT-BUG-1564281.
What is Exiv2 and its relation to REDHAT-BUG-1564281?
Exiv2 is a library used for handling image metadata, and REDHAT-BUG-1564281 documents a critical flaw within this library.
Can REDHAT-BUG-1564281 lead to other security issues?
Yes, the reachable assertion abort in REDHAT-BUG-1564281 can potentially be exploited to cause application crashes or further vulnerabilities.
- agent/type
- agent/last-modified-date
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2018-9145
- agent/severity
- agent/references
- agent/description
- agent/first-publish-date
- agent/event
- agent/trending
- agent/source
- agent/softwarecombine
- agent/tags
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/exiv2
- canonical/centos dos2unix