Логотип exploitDog
bind:CVE-2021-31291
Консоль
Логотип exploitDog

exploitDog

bind:CVE-2021-31291

Количество 14

Количество 14

ubuntu логотип

CVE-2021-31291

около 4 лет назад

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2021-29457. Reason: This candidate is a duplicate of CVE-2021-29457. Notes: All CVE users should reference CVE-2021-29457 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage

EPSS: Низкий
redhat логотип

CVE-2021-31291

около 4 лет назад

A flaw was found in exiv2. A flawed bounds checking in the jp2Image.cpp:doWriteMetadata function leads to a heap-based buffer overflow. This flaw allows an attacker who can provide a malicious image to an application using the exiv2 library, to write data out of bounds and potentially execute code. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

CVSS3: 8.1
EPSS: Низкий
nvd логотип

CVE-2021-31291

около 4 лет назад

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2021-29457. Reason: This candidate is a duplicate of CVE-2021-29457. Notes: All CVE users should reference CVE-2021-29457 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage

EPSS: Низкий
rocky логотип

RLSA-2021:3152

почти 4 года назад

Important: exiv2 security update

EPSS: Низкий
github логотип

GHSA-f74q-rm7p-mwq5

около 3 лет назад

A heap-based buffer overflow vulnerability in jp2image.cpp of Exiv2 0.27.3 allows attackers to cause a denial of service (DOS) via crafted metadata.

EPSS: Низкий
oracle-oval логотип

ELSA-2021-3234

почти 4 года назад

ELSA-2021-3234: compat-exiv2-023 security update (IMPORTANT)

EPSS: Низкий
oracle-oval логотип

ELSA-2021-3233

почти 4 года назад

ELSA-2021-3233: compat-exiv2-026 security update (IMPORTANT)

EPSS: Низкий
oracle-oval логотип

ELSA-2021-3158

почти 4 года назад

ELSA-2021-3158: exiv2 security update (IMPORTANT)

EPSS: Низкий
oracle-oval логотип

ELSA-2021-3153

почти 4 года назад

ELSA-2021-3153: compat-exiv2-026 security update (IMPORTANT)

EPSS: Низкий
oracle-oval логотип

ELSA-2021-3152

почти 4 года назад

ELSA-2021-3152: exiv2 security update (IMPORTANT)

EPSS: Низкий
suse-cvrf логотип

SUSE-SU-2022:3543-1

почти 3 года назад

Security update for exiv2

EPSS: Низкий
suse-cvrf логотип

SUSE-SU-2022:4252-1

больше 2 лет назад

Security update for exiv2

EPSS: Низкий
suse-cvrf логотип

SUSE-SU-2022:3889-1

почти 3 года назад

Security update for exiv2

EPSS: Низкий
suse-cvrf логотип

SUSE-SU-2022:3598-1

почти 3 года назад

Security update for exiv2

EPSS: Низкий

Уязвимостей на страницу

Уязвимость
CVSS
EPSS
Опубликовано
ubuntu логотип
CVE-2021-31291

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2021-29457. Reason: This candidate is a duplicate of CVE-2021-29457. Notes: All CVE users should reference CVE-2021-29457 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage

около 4 лет назад
redhat логотип
CVE-2021-31291

A flaw was found in exiv2. A flawed bounds checking in the jp2Image.cpp:doWriteMetadata function leads to a heap-based buffer overflow. This flaw allows an attacker who can provide a malicious image to an application using the exiv2 library, to write data out of bounds and potentially execute code. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

CVSS3: 8.1
около 4 лет назад
nvd логотип
CVE-2021-31291

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2021-29457. Reason: This candidate is a duplicate of CVE-2021-29457. Notes: All CVE users should reference CVE-2021-29457 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage

около 4 лет назад
rocky логотип
RLSA-2021:3152

Important: exiv2 security update

почти 4 года назад
github логотип
GHSA-f74q-rm7p-mwq5

A heap-based buffer overflow vulnerability in jp2image.cpp of Exiv2 0.27.3 allows attackers to cause a denial of service (DOS) via crafted metadata.

около 3 лет назад
oracle-oval логотип
ELSA-2021-3234

ELSA-2021-3234: compat-exiv2-023 security update (IMPORTANT)

почти 4 года назад
oracle-oval логотип
ELSA-2021-3233

ELSA-2021-3233: compat-exiv2-026 security update (IMPORTANT)

почти 4 года назад
oracle-oval логотип
ELSA-2021-3158

ELSA-2021-3158: exiv2 security update (IMPORTANT)

почти 4 года назад
oracle-oval логотип
ELSA-2021-3153

ELSA-2021-3153: compat-exiv2-026 security update (IMPORTANT)

почти 4 года назад
oracle-oval логотип
ELSA-2021-3152

ELSA-2021-3152: exiv2 security update (IMPORTANT)

почти 4 года назад
suse-cvrf логотип
SUSE-SU-2022:3543-1

Security update for exiv2

почти 3 года назад
suse-cvrf логотип
SUSE-SU-2022:4252-1

Security update for exiv2

больше 2 лет назад
suse-cvrf логотип
SUSE-SU-2022:3889-1

Security update for exiv2

почти 3 года назад
suse-cvrf логотип
SUSE-SU-2022:3598-1

Security update for exiv2

почти 3 года назад

Уязвимостей на страницу