RHSA-2019:2048LowCVSS 3.3
Red Hat Security Advisory: exempi security update
🔗 CVE IDs covered (5)
📋 Description
CVE-2017-18233 — exempi: Infinite Loop in Chunk class in XMPFiles/source/FormatSupport/RIFF.cpp CVE-2017-18234 — exempi: Use after free via a PDF file containing JPEG data CVE-2017-18236 — exempi: Infinite loop in ASF_Support::ReadHeaderObject function in XMPFiles/source/FormatSupport/ASF_Support.cpp CVE-2017-18238 — exempi: Infinite loop in TradQT_Manager::ParseCachedBoxes function in XMPFiles/source/FormatSupport/QuickTime_Support.cpp CVE-2018-7730 — exempi: Heap-based buffer overflow in PSD_MetaHandler::CacheFileData function in XMPFiles/source/FormatSupport/PSIR_FileWriter.cpp allows for denial of service via crafted XLS file
🔗 References (9)
- selfhttps://access.redhat.com/errata/RHSA-2019:2048
- externalhttps://access.redhat.com/security/updates/classification/#low
- externalhttps://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html-single/7.7_release_notes/index
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1555163
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1558715
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1559575
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1559590
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1559596
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_2048.json