First published: Wed May 22 2024(Updated: )
Exempi provides a library for easy parsing of XMP metadata.<br>Security Fix(es):<br><li> exempi: denial of service via opening of crafted audio file with ID3V2 frame (CVE-2020-18651)</li> <li> exempi: denial of service via opening of crafted webp file (CVE-2020-18652)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.<br>Additional Changes:<br>For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.10 Release Notes linked from the References section.
Affected Software | Affected Version | How to fix |
---|---|---|
redhat/exempi | <2.4.5-4.el8 | 2.4.5-4.el8 |
redhat/exempi | <2.4.5-4.el8 | 2.4.5-4.el8 |
redhat/exempi-debuginfo | <2.4.5-4.el8 | 2.4.5-4.el8 |
redhat/exempi-debuginfo | <2.4.5-4.el8 | 2.4.5-4.el8 |
redhat/exempi-debugsource | <2.4.5-4.el8 | 2.4.5-4.el8 |
redhat/exempi-debugsource | <2.4.5-4.el8 | 2.4.5-4.el8 |
redhat/exempi | <2.4.5-4.el8 | 2.4.5-4.el8 |
redhat/exempi-debuginfo | <2.4.5-4.el8 | 2.4.5-4.el8 |
redhat/exempi-debugsource | <2.4.5-4.el8 | 2.4.5-4.el8 |
redhat/exempi | <2.4.5-4.el8.aa | 2.4.5-4.el8.aa |
redhat/exempi-debuginfo | <2.4.5-4.el8.aa | 2.4.5-4.el8.aa |
redhat/exempi-debugsource | <2.4.5-4.el8.aa | 2.4.5-4.el8.aa |
redhat/exempi-devel | <2.4.5-4.el8 | 2.4.5-4.el8 |
redhat/exempi-devel | <2.4.5-4.el8 | 2.4.5-4.el8 |
redhat/exempi-devel | <2.4.5-4.el8 | 2.4.5-4.el8 |
redhat/exempi-devel | <2.4.5-4.el8.aa | 2.4.5-4.el8.aa |
Red Hat Red Hat CodeReady Linux Builder for ARM 64 | ||
Red Hat Red Hat Enterprise Linux for x86_64 | ||
Red Hat Red Hat Enterprise Linux for IBM z Systems | ||
Red Hat Red Hat Enterprise Linux for Power, little endian | ||
Red Hat Red Hat CodeReady Linux Builder for Power, little endian | ||
Red Hat Red Hat Enterprise Linux for ARM 64 | ||
Red Hat Red Hat CodeReady Linux Builder for x86_64 | ||
Red Hat Red Hat CodeReady Linux Builder for IBM z Systems |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.