Debian Exempi vulnerabilities

CVE-2021-36045 [LOW] CVE-2021-36045: exempi - XMP Toolkit SDK versions 2020.1 (and earlier) are affected by an out-of-bounds r... XMP Toolkit SDK versions 2020.1 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of arbitrary memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Scope: local bookworm: resolved (fixed in

CVE-2021-36054 [LOW] CVE-2021-36054: exempi - XMP Toolkit SDK version 2020.1 (and earlier) is affected by a buffer overflow vu... XMP Toolkit SDK version 2020.1 (and earlier) is affected by a buffer overflow vulnerability potentially resulting in local application denial of service in the context of the current user. Exploitation requires user interaction in that a victim must open a crafted file. Scope: local bookworm: resolved (fixed in 2.6.0-1) bullseye: resolved (fixed in 2.5.2-1+deb11u1) fo

CVE-2020-18652 [MEDIUM] CVE-2020-18652: exempi - Buffer Overflow vulnerability in WEBP_Support.cpp in exempi 2.5.0 and earlier al... Buffer Overflow vulnerability in WEBP_Support.cpp in exempi 2.5.0 and earlier allows remote attackers to cause a denial of service via opening of crafted webp file. Scope: local bookworm: resolved (fixed in 2.5.1-1) bullseye: resolved (fixed in 2.5.1-1) forky: resolved (fixed in 2.5.1-1) sid: resolved (fixed in 2.5.1-1) trixie: resolved (fixed in 2.5.1-1)

CVE-2020-18651 [MEDIUM] CVE-2020-18651: exempi - Buffer Overflow vulnerability in function ID3_Support::ID3v2Frame::getFrameValue... Buffer Overflow vulnerability in function ID3_Support::ID3v2Frame::getFrameValue in exempi 2.5.0 and earlier allows remote attackers to cause a denial of service via opening of crafted audio file with ID3V2 frame. Scope: local bookworm: resolved (fixed in 2.5.1-1) bullseye: resolved (fixed in 2.5.1-1) forky: resolved (fixed in 2.5.1-1) sid: resolved (fixed in 2.5.1

CVE-2018-7728 [MEDIUM] CVE-2018-7728: exempi - An issue was discovered in Exempi through 2.4.4. XMPFiles/source/FileHandlers/TI... An issue was discovered in Exempi through 2.4.4. XMPFiles/source/FileHandlers/TIFF_Handler.cpp mishandles a case of a zero length, leading to a heap-based buffer over-read in the MD5Update() function in third-party/zuid/interfaces/MD5.cpp. Scope: local bookworm: resolved (fixed in 2.4.5-1) bullseye: resolved (fixed in 2.4.5-1) forky: resolved (fixed in 2.4.5-1) sid:

CVE-2018-7729 [MEDIUM] CVE-2018-7729: exempi - An issue was discovered in Exempi through 2.4.4. There is a stack-based buffer o... An issue was discovered in Exempi through 2.4.4. There is a stack-based buffer over-read in the PostScript_MetaHandler::ParsePSFile() function in XMPFiles/source/FileHandlers/PostScript_Handler.cpp. Scope: local bookworm: resolved (fixed in 2.4.5-1) bullseye: resolved (fixed in 2.4.5-1) forky: resolved (fixed in 2.4.5-1) sid: resolved (fixed in 2.4.5-1) trixie: resol

CVE-2018-7731 [MEDIUM] CVE-2018-7731: exempi - An issue was discovered in Exempi through 2.4.4. XMPFiles/source/FormatSupport/W... An issue was discovered in Exempi through 2.4.4. XMPFiles/source/FormatSupport/WEBP_Support.cpp does not check whether a bitstream has a NULL value, leading to a NULL pointer dereference in the WEBP::VP8XChunk class. Scope: local bookworm: resolved (fixed in 2.4.5-1) bullseye: resolved (fixed in 2.4.5-1) forky: resolved (fixed in 2.4.5-1) sid: resolved (fixed in 2.4.

CVE-2018-12648 [HIGH] CVE-2018-12648: exempi - The WEBP::GetLE32 function in XMPFiles/source/FormatSupport/WEBP_Support.hpp in ... The WEBP::GetLE32 function in XMPFiles/source/FormatSupport/WEBP_Support.hpp in Exempi 2.4.5 has a NULL pointer dereference. Scope: local bookworm: resolved (fixed in 2.5.0-2) bullseye: resolved (fixed in 2.5.0-2) forky: resolved (fixed in 2.5.0-2) sid: resolved (fixed in 2.5.0-2) trixie: resolved (fixed in 2.5.0-2)

CVE-2018-7730 [MEDIUM] CVE-2018-7730: exempi - An issue was discovered in Exempi through 2.4.4. A certain case of a 0xffffffff ... An issue was discovered in Exempi through 2.4.4. A certain case of a 0xffffffff length is mishandled in XMPFiles/source/FormatSupport/PSIR_FileWriter.cpp, leading to a heap-based buffer over-read in the PSD_MetaHandler::CacheFileData() function. Scope: local bookworm: resolved (fixed in 2.4.5-1) bullseye: resolved (fixed in 2.4.5-1) forky: resolved (fixed in 2.4.5-1)

CVE-2017-18235 [MEDIUM] CVE-2017-18235: exempi - An issue was discovered in Exempi before 2.4.3. The VPXChunk class in XMPFiles/s... An issue was discovered in Exempi before 2.4.3. The VPXChunk class in XMPFiles/source/FormatSupport/WEBP_Support.cpp does not ensure nonzero widths and heights, which allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted .webp file. Scope: local bookworm: resolved (fixed in 2.4.3-1) bullseye: resolved (fixed in

CVE-2017-18234 [HIGH] CVE-2017-18234: exempi - An issue was discovered in Exempi before 2.4.3. It allows remote attackers to ca... An issue was discovered in Exempi before 2.4.3. It allows remote attackers to cause a denial of service (invalid memcpy with resultant use-after-free) or possibly have unspecified other impact via a .pdf file containing JPEG data, related to XMPFiles/source/FormatSupport/ReconcileTIFF.cpp, XMPFiles/source/FormatSupport/TIFF_MemoryReader.cpp, and XMPFiles/source/Forma

CVE-2017-18233 [MEDIUM] CVE-2017-18233: exempi - An issue was discovered in Exempi before 2.4.4. Integer overflow in the Chunk cl... An issue was discovered in Exempi before 2.4.4. Integer overflow in the Chunk class in XMPFiles/source/FormatSupport/RIFF.cpp allows remote attackers to cause a denial of service (infinite loop) via crafted XMP data in a .avi file. Scope: local bookworm: resolved (fixed in 2.4.4-1) bullseye: resolved (fixed in 2.4.4-1) forky: resolved (fixed in 2.4.4-1) sid: resolv

CVE-2017-18236 [MEDIUM] CVE-2017-18236: exempi - An issue was discovered in Exempi before 2.4.4. The ASF_Support::ReadHeaderObjec... An issue was discovered in Exempi before 2.4.4. The ASF_Support::ReadHeaderObject function in XMPFiles/source/FormatSupport/ASF_Support.cpp allows remote attackers to cause a denial of service (infinite loop) via a crafted .asf file. Scope: local bookworm: resolved (fixed in 2.4.4-1) bullseye: resolved (fixed in 2.4.4-1) forky: resolved (fixed in 2.4.4-1) sid: reso

CVE-2017-18237 [MEDIUM] CVE-2017-18237: exempi - An issue was discovered in Exempi before 2.4.3. The PostScript_Support::ConvertT... An issue was discovered in Exempi before 2.4.3. The PostScript_Support::ConvertToDate function in XMPFiles/source/FormatSupport/PostScript_Support.cpp allows remote attackers to cause a denial of service (invalid pointer dereference and application crash) via a crafted .ps file. Scope: local bookworm: resolved (fixed in 2.4.3-1) bullseye: resolved (fixed in 2.4.3-1

CVE-2017-18238 [MEDIUM] CVE-2017-18238: exempi - An issue was discovered in Exempi before 2.4.4. The TradQT_Manager::ParseCachedB... An issue was discovered in Exempi before 2.4.4. The TradQT_Manager::ParseCachedBoxes function in XMPFiles/source/FormatSupport/QuickTime_Support.cpp allows remote attackers to cause a denial of service (infinite loop) via crafted XMP data in a .qt file. Scope: local bookworm: resolved (fixed in 2.4.4-1) bullseye: resolved (fixed in 2.4.4-1) forky: resolved (fixed i