CVE-2021-3482Improper Input Validation in Exiv2

CWE-20Improper Input ValidationCWE-787Out-of-bounds WriteCWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer8 documents7 sources
Severity
6.5MEDIUMNVD
OSV7.8
EPSS
0.2%
top 57.70%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
8
Exiv2Debian Exiv2Debian Linux+5 more
Timeline
PublishedApr 8
Latest updateMay 24

Description

A flaw was found in Exiv2 in versions before and including 0.27.4-RC1. Improper input validation of the rawData.size property in Jp2Image::readMetadata() in jp2image.cpp can lead to a heap-based buffer overflow via a crafted JPG image containing malicious EXIF data.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:LExploitability: 3.9 | Impact: 2.5

Affected Packages8 packages

debiandebian/exiv2< exiv2 0.27.5-1 (bookworm)
Debianexiv2/exiv2< 0.27.3-3+deb11u2+3
Ubuntuexiv2/exiv2< 0.25-3.1ubuntu0.18.04.7+2
NVDexiv2/exiv20.27.3+1
CVEListV5exiv2/exiv2exiv2 0.27.4RC2

Also affects: Debian Linux 10.0, 9.0, Fedora 33, 34, Enterprise Linux 8.0

Patches

Patch: bugzilla.redhat.comPatch: bugzilla.redhat.com

🔴Vulnerability Details

3
GHSA
GHSA-73rc-8qcm-v2wx: A flaw was found in Exiv2 in versions before and including 02022-05-24
OSV
exiv2 vulnerabilities2021-05-10
OSV
CVE-2021-3482: A flaw was found in Exiv2 in versions before and including 02021-04-08

📋Vendor Advisories

4
Ubuntu
Exiv2 vulnerabilities2021-05-10
Microsoft
A flaw was found in Exiv2 in versions before and including 0.27.4-RC1. Improper input validation of the rawData.size property in Jp2Image::readMetadata() in jp2image.cpp can lead to a heap-based buffe2021-04-13
Red Hat
exiv2: Heap-based buffer overflow in Jp2Image::readMetadata()2021-04-05
Debian
CVE-2021-3482: exiv2 - A flaw was found in Exiv2 in versions before and including 0.27.4-RC1. Improper ...2021