Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2020-0093
Vulnerability from cvelistv5
Published
2020-05-14 20:10
Modified
2024-08-04 05:47
Severity ?
EPSS score ?
Summary
In exif_data_save_data_entry of exif-data.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-148705132
References
Impacted products
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-04T05:47:40.659Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://source.android.com/security/bulletin/2020-05-01", }, { name: "[debian-lts-announce] 20200518 [SECURITY] [DLA 2214-1] libexif security update", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "https://lists.debian.org/debian-lts-announce/2020/05/msg00016.html", }, { name: "openSUSE-SU-2020:0793", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00017.html", }, { name: "USN-4396-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "https://usn.ubuntu.com/4396-1/", }, { name: "GLSA-202007-05", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "https://security.gentoo.org/glsa/202007-05", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Android", vendor: "n/a", versions: [ { status: "affected", version: "Android-8.0 Android-8.1 Android-9 Android-10", }, ], }, ], descriptions: [ { lang: "en", value: "In exif_data_save_data_entry of exif-data.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-148705132", }, ], problemTypes: [ { descriptions: [ { description: "Information disclosure", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2020-07-27T00:06:13", orgId: "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", shortName: "google_android", }, references: [ { tags: [ "x_refsource_MISC", ], url: "https://source.android.com/security/bulletin/2020-05-01", }, { name: "[debian-lts-announce] 20200518 [SECURITY] [DLA 2214-1] libexif security update", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "https://lists.debian.org/debian-lts-announce/2020/05/msg00016.html", }, { name: "openSUSE-SU-2020:0793", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00017.html", }, { name: "USN-4396-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "https://usn.ubuntu.com/4396-1/", }, { name: "GLSA-202007-05", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "https://security.gentoo.org/glsa/202007-05", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "security@android.com", ID: "CVE-2020-0093", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Android", version: { version_data: [ { version_value: "Android-8.0 Android-8.1 Android-9 Android-10", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "In exif_data_save_data_entry of exif-data.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-148705132", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "Information disclosure", }, ], }, ], }, references: { reference_data: [ { name: "https://source.android.com/security/bulletin/2020-05-01", refsource: "MISC", url: "https://source.android.com/security/bulletin/2020-05-01", }, { name: "[debian-lts-announce] 20200518 [SECURITY] [DLA 2214-1] libexif security update", refsource: "MLIST", url: "https://lists.debian.org/debian-lts-announce/2020/05/msg00016.html", }, { name: "openSUSE-SU-2020:0793", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00017.html", }, { name: "USN-4396-1", refsource: "UBUNTU", url: "https://usn.ubuntu.com/4396-1/", }, { name: "GLSA-202007-05", refsource: "GENTOO", url: "https://security.gentoo.org/glsa/202007-05", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", assignerShortName: "google_android", cveId: "CVE-2020-0093", datePublished: "2020-05-14T20:10:39", dateReserved: "2019-10-17T00:00:00", dateUpdated: "2024-08-04T05:47:40.659Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", "vulnerability-lookup:meta": { nvd: "{\"cve\":{\"id\":\"CVE-2020-0093\",\"sourceIdentifier\":\"security@android.com\",\"published\":\"2020-05-14T21:15:11.883\",\"lastModified\":\"2024-11-21T04:52:53.650\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In exif_data_save_data_entry of exif-data.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-148705132\"},{\"lang\":\"es\",\"value\":\"En la función exif_data_save_data_entry del archivo exif-data.c, se presenta una posible lectura fuera de límites debido a una falta de comprobación de límites. Esto podría conllevar a una divulgación de información local sin ser necesarios privilegios de ejecución adicionales. Es requerida una interacción del usuario para su explotación. Producto: Android, Versiones: Android-8.0 Android-8.1 Android-9 Android-10, ID de Android: A-148705132\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N\",\"baseScore\":5.0,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.3,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:M/Au:N/C:P/I:N/A:N\",\"baseScore\":1.9,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":3.4,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-125\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:google:android:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B578E383-0D77-4AC7-9C81-3F0B8C18E033\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:google:android:8.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B06BE74B-83F4-41A3-8AD3-2E6248F7B0B2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:google:android:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8DFAAD08-36DA-4C95-8200-C29FE5B6B854\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:google:android:10.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D558D965-FA70-4822-A770-419E73BA9ED3\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1F3EFED2-F6BC-46D9-AB22-D5ED87EF4549\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*\",\"matchCriteriaId\":\"815D70A8-47D3-459C-A32C-9FEACA0659D1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*\",\"matchCriteriaId\":\"7A5301BF-1402-4BE0-A0F8-69FBE79BC6D6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A31C8344-3E02-4EB8-8BD8-4C84B7959624\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"902B8056-9E37-443B-8905-8AA93E2447FB\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:libexif_project:libexif:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"0.6.22\",\"matchCriteriaId\":\"C81CD57C-F020-46D6-859A-A9E81EF9685B\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B620311B-34A3-48A6-82DF-6F078D7A4493\"}]}]}],\"references\":[{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00017.html\",\"source\":\"security@android.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2020/05/msg00016.html\",\"source\":\"security@android.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202007-05\",\"source\":\"security@android.com\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://source.android.com/security/bulletin/2020-05-01\",\"source\":\"security@android.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://usn.ubuntu.com/4396-1/\",\"source\":\"security@android.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00017.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2020/05/msg00016.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202007-05\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://source.android.com/security/bulletin/2020-05-01\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://usn.ubuntu.com/4396-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}", }, }
RHSA-2020:4040
Vulnerability from csaf_redhat
Published
2020-09-29 20:17
Modified
2024-11-22 15:19
Summary
Red Hat Security Advisory: libexif security, bug fix, and enhancement update
Notes
Topic
An update for libexif is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The libexif packages provide a library for extracting extra information from image files.
The following packages have been upgraded to a later upstream version: libexif (0.6.22). (BZ#1841316)
Security Fix(es):
* libexif: out of bound write in exif-data.c (CVE-2019-9278)
* libexif: out of bounds read due to a missing bounds check in exif_data_save_data_entry function in exif-data.c (CVE-2020-0093)
* libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and use-after-free (CVE-2020-13113)
* libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time (CVE-2020-13114)
* libexif: out of bounds read due to a missing bounds check in exif_entry_get_value function in exif-entry.c (CVE-2020-0182)
* libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c (CVE-2020-12767)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.9 Release Notes linked from the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for libexif is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The libexif packages provide a library for extracting extra information from image files.\n\nThe following packages have been upgraded to a later upstream version: libexif (0.6.22). (BZ#1841316)\n\nSecurity Fix(es):\n\n* libexif: out of bound write in exif-data.c (CVE-2019-9278)\n\n* libexif: out of bounds read due to a missing bounds check in exif_data_save_data_entry function in exif-data.c (CVE-2020-0093)\n\n* libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and use-after-free (CVE-2020-13113)\n\n* libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time (CVE-2020-13114)\n\n* libexif: out of bounds read due to a missing bounds check in exif_entry_get_value function in exif-entry.c (CVE-2020-0182)\n\n* libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c (CVE-2020-12767)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 7.9 Release Notes linked from the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2020:4040", url: "https://access.redhat.com/errata/RHSA-2020:4040", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.9_release_notes/index", url: "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.9_release_notes/index", }, { category: "external", summary: "1789031", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789031", }, { category: "external", summary: "1834950", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1834950", }, { category: "external", summary: "1840347", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1840347", }, { category: "external", summary: "1840350", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1840350", }, { category: "external", summary: "1841316", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1841316", }, { category: "external", summary: "1852487", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852487", }, { category: "external", summary: "1852490", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852490", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_4040.json", }, ], title: "Red Hat Security Advisory: libexif security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T15:19:16+00:00", generator: { date: "2024-11-22T15:19:16+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2020:4040", initial_release_date: "2020-09-29T20:17:18+00:00", revision_history: [ { date: "2020-09-29T20:17:18+00:00", number: "1", summary: "Initial version", }, { date: "2020-09-29T20:17:18+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T15:19:16+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux Client (v. 7)", product: { name: "Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::client", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Client Optional (v. 7)", product: { name: "Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::client", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product: { name: "Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::computenode", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Server (v. 7)", product: { name: "Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::server", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Server Optional (v. 7)", product: { name: "Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::server", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Workstation (v. 7)", product: { name: "Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::workstation", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Workstation Optional (v. 7)", product: { name: "Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::workstation", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "libexif-0:0.6.22-1.el7.i686", product: { name: "libexif-0:0.6.22-1.el7.i686", product_id: "libexif-0:0.6.22-1.el7.i686", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-1.el7?arch=i686", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-1.el7.i686", product: { name: "libexif-debuginfo-0:0.6.22-1.el7.i686", product_id: "libexif-debuginfo-0:0.6.22-1.el7.i686", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-1.el7?arch=i686", }, }, }, { category: "product_version", name: "libexif-devel-0:0.6.22-1.el7.i686", product: { name: "libexif-devel-0:0.6.22-1.el7.i686", product_id: "libexif-devel-0:0.6.22-1.el7.i686", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-1.el7?arch=i686", }, }, }, ], category: "architecture", name: "i686", }, { branches: [ { category: "product_version", name: "libexif-0:0.6.22-1.el7.x86_64", product: { name: "libexif-0:0.6.22-1.el7.x86_64", product_id: "libexif-0:0.6.22-1.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-1.el7?arch=x86_64", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-1.el7.x86_64", product: { name: "libexif-debuginfo-0:0.6.22-1.el7.x86_64", product_id: "libexif-debuginfo-0:0.6.22-1.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-1.el7?arch=x86_64", }, }, }, { category: "product_version", name: "libexif-devel-0:0.6.22-1.el7.x86_64", product: { name: "libexif-devel-0:0.6.22-1.el7.x86_64", product_id: "libexif-devel-0:0.6.22-1.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-1.el7?arch=x86_64", }, }, }, { category: "product_version", name: "libexif-doc-0:0.6.22-1.el7.x86_64", product: { name: "libexif-doc-0:0.6.22-1.el7.x86_64", product_id: "libexif-doc-0:0.6.22-1.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-doc@0.6.22-1.el7?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "libexif-0:0.6.22-1.el7.src", product: { name: "libexif-0:0.6.22-1.el7.src", product_id: "libexif-0:0.6.22-1.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-1.el7?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "libexif-0:0.6.22-1.el7.s390x", product: { name: "libexif-0:0.6.22-1.el7.s390x", product_id: "libexif-0:0.6.22-1.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-1.el7?arch=s390x", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-1.el7.s390x", product: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390x", product_id: "libexif-debuginfo-0:0.6.22-1.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-1.el7?arch=s390x", }, }, }, { category: "product_version", name: "libexif-devel-0:0.6.22-1.el7.s390x", product: { name: "libexif-devel-0:0.6.22-1.el7.s390x", product_id: "libexif-devel-0:0.6.22-1.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-1.el7?arch=s390x", }, }, }, { category: "product_version", name: "libexif-doc-0:0.6.22-1.el7.s390x", product: { name: "libexif-doc-0:0.6.22-1.el7.s390x", product_id: "libexif-doc-0:0.6.22-1.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-doc@0.6.22-1.el7?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "libexif-0:0.6.22-1.el7.s390", product: { name: "libexif-0:0.6.22-1.el7.s390", product_id: "libexif-0:0.6.22-1.el7.s390", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-1.el7?arch=s390", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-1.el7.s390", product: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390", product_id: "libexif-debuginfo-0:0.6.22-1.el7.s390", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-1.el7?arch=s390", }, }, }, { category: "product_version", name: "libexif-devel-0:0.6.22-1.el7.s390", product: { name: "libexif-devel-0:0.6.22-1.el7.s390", product_id: "libexif-devel-0:0.6.22-1.el7.s390", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-1.el7?arch=s390", }, }, }, ], category: "architecture", name: "s390", }, { branches: [ { category: "product_version", name: "libexif-0:0.6.22-1.el7.ppc64", product: { name: "libexif-0:0.6.22-1.el7.ppc64", product_id: "libexif-0:0.6.22-1.el7.ppc64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-1.el7?arch=ppc64", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64", product: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64", product_id: "libexif-debuginfo-0:0.6.22-1.el7.ppc64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-1.el7?arch=ppc64", }, }, }, { category: "product_version", name: "libexif-devel-0:0.6.22-1.el7.ppc64", product: { name: "libexif-devel-0:0.6.22-1.el7.ppc64", product_id: "libexif-devel-0:0.6.22-1.el7.ppc64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-1.el7?arch=ppc64", }, }, }, { category: "product_version", name: "libexif-doc-0:0.6.22-1.el7.ppc64", product: { name: "libexif-doc-0:0.6.22-1.el7.ppc64", product_id: "libexif-doc-0:0.6.22-1.el7.ppc64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-doc@0.6.22-1.el7?arch=ppc64", }, }, }, ], category: "architecture", name: "ppc64", }, { branches: [ { category: "product_version", name: "libexif-0:0.6.22-1.el7.ppc", product: { name: "libexif-0:0.6.22-1.el7.ppc", product_id: "libexif-0:0.6.22-1.el7.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-1.el7?arch=ppc", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-1.el7.ppc", product: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc", product_id: "libexif-debuginfo-0:0.6.22-1.el7.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-1.el7?arch=ppc", }, }, }, { category: "product_version", name: "libexif-devel-0:0.6.22-1.el7.ppc", product: { name: "libexif-devel-0:0.6.22-1.el7.ppc", product_id: "libexif-devel-0:0.6.22-1.el7.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-1.el7?arch=ppc", }, }, }, ], category: "architecture", name: "ppc", }, { branches: [ { category: "product_version", name: "libexif-0:0.6.22-1.el7.ppc64le", product: { name: "libexif-0:0.6.22-1.el7.ppc64le", product_id: "libexif-0:0.6.22-1.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-1.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", product: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", product_id: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-1.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "libexif-devel-0:0.6.22-1.el7.ppc64le", product: { name: "libexif-devel-0:0.6.22-1.el7.ppc64le", product_id: "libexif-devel-0:0.6.22-1.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-1.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "libexif-doc-0:0.6.22-1.el7.ppc64le", product: { name: "libexif-doc-0:0.6.22-1.el7.ppc64le", product_id: "libexif-doc-0:0.6.22-1.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-doc@0.6.22-1.el7?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-0:0.6.22-1.el7.i686", }, product_reference: "libexif-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-0:0.6.22-1.el7.s390", }, product_reference: "libexif-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.src as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-0:0.6.22-1.el7.src", }, product_reference: "libexif-0:0.6.22-1.el7.src", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", }, product_reference: "libexif-devel-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-doc-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", }, product_reference: "libexif-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", }, product_reference: "libexif-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.src as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", }, product_reference: "libexif-0:0.6.22-1.el7.src", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", }, product_reference: "libexif-devel-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-doc-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", }, product_reference: "libexif-0:0.6.22-1.el7.i686", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", }, product_reference: "libexif-0:0.6.22-1.el7.s390", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.src as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", }, product_reference: "libexif-0:0.6.22-1.el7.src", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.i686", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", }, product_reference: "libexif-devel-0:0.6.22-1.el7.i686", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-doc-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-0:0.6.22-1.el7.i686", }, product_reference: "libexif-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-0:0.6.22-1.el7.s390", }, product_reference: "libexif-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.src as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-0:0.6.22-1.el7.src", }, product_reference: "libexif-0:0.6.22-1.el7.src", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", }, product_reference: "libexif-devel-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-doc-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", }, product_reference: "libexif-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", }, product_reference: "libexif-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.src as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", }, product_reference: "libexif-0:0.6.22-1.el7.src", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", }, product_reference: "libexif-devel-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-doc-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", }, product_reference: "libexif-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", }, product_reference: "libexif-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.src as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", }, product_reference: "libexif-0:0.6.22-1.el7.src", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", }, product_reference: "libexif-devel-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-doc-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", }, product_reference: "libexif-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", }, product_reference: "libexif-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", }, product_reference: "libexif-0:0.6.22-1.el7.src", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", }, product_reference: "libexif-devel-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-doc-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Workstation-optional-7.9", }, ], }, vulnerabilities: [ { cve: "CVE-2019-9278", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, discovery_date: "2019-12-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789031", }, ], notes: [ { category: "description", text: "In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media content provider with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112537774", title: "Vulnerability description", }, { category: "summary", text: "libexif: out of bounds write in exif-data.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9278", }, { category: "external", summary: "RHBZ#1789031", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789031", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9278", url: "https://www.cve.org/CVERecord?id=CVE-2019-9278", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9278", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9278", }, ], release_date: "2019-12-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-09-29T20:17:18+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4040", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "libexif: out of bounds write in exif-data.c", }, { cve: "CVE-2020-0093", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2020-05-14T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1852487", }, ], notes: [ { category: "description", text: "In exif_data_save_data_entry of exif-data.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-148705132", title: "Vulnerability description", }, { category: "summary", text: "libexif: out of bounds read due to a missing bounds check in exif_data_save_data_entry function in exif-data.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-0093", }, { category: "external", summary: "RHBZ#1852487", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852487", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-0093", url: "https://www.cve.org/CVERecord?id=CVE-2020-0093", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-0093", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-0093", }, ], release_date: "2020-05-04T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-09-29T20:17:18+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4040", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "libexif: out of bounds read due to a missing bounds check in exif_data_save_data_entry function in exif-data.c", }, { cve: "CVE-2020-0182", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2020-06-11T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1852490", }, ], notes: [ { category: "description", text: "In exif_entry_get_value of exif-entry.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-147140917", title: "Vulnerability description", }, { category: "summary", text: "libexif: out of bounds read due to a missing bounds check in exif_entry_get_value function in exif-entry.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-0182", }, { category: "external", summary: "RHBZ#1852490", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852490", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-0182", url: "https://www.cve.org/CVERecord?id=CVE-2020-0182", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-0182", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-0182", }, ], release_date: "2020-06-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-09-29T20:17:18+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4040", }, { category: "workaround", details: "This flaw could be mitigated by not passing untrusted input to libexif.", product_ids: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L", version: "3.1", }, products: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "libexif: out of bounds read due to a missing bounds check in exif_entry_get_value function in exif-entry.c", }, { cve: "CVE-2020-12767", cwe: { id: "CWE-369", name: "Divide By Zero", }, discovery_date: "2020-05-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1834950", }, ], notes: [ { category: "description", text: "exif_entry_get_value in exif-entry.c in libexif 0.6.21 has a divide-by-zero error.", title: "Vulnerability description", }, { category: "summary", text: "libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-12767", }, { category: "external", summary: "RHBZ#1834950", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1834950", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-12767", url: "https://www.cve.org/CVERecord?id=CVE-2020-12767", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-12767", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-12767", }, ], release_date: "2020-02-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-09-29T20:17:18+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4040", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 6.2, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c", }, { cve: "CVE-2020-13113", cwe: { id: "CWE-822", name: "Untrusted Pointer Dereference", }, discovery_date: "2020-05-21T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1840347", }, ], notes: [ { category: "description", text: "An issue was discovered in libexif before 0.6.22. Use of uninitialized memory in EXIF Makernote handling could lead to crashes and potential use-after-free conditions.", title: "Vulnerability description", }, { category: "summary", text: "libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and use-after-free", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-13113", }, { category: "external", summary: "RHBZ#1840347", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1840347", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-13113", url: "https://www.cve.org/CVERecord?id=CVE-2020-13113", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-13113", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-13113", }, ], release_date: "2020-05-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-09-29T20:17:18+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4040", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.2, baseSeverity: "HIGH", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H", version: "3.1", }, products: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and use-after-free", }, { cve: "CVE-2020-13114", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2020-05-21T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1840350", }, ], notes: [ { category: "description", text: "An issue was discovered in libexif before 0.6.22. An unrestricted size in handling Canon EXIF MakerNote data could lead to consumption of large amounts of compute time for decoding EXIF data.", title: "Vulnerability description", }, { category: "summary", text: "libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-13114", }, { category: "external", summary: "RHBZ#1840350", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1840350", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-13114", url: "https://www.cve.org/CVERecord?id=CVE-2020-13114", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-13114", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-13114", }, ], release_date: "2020-05-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-09-29T20:17:18+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4040", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time", }, ], }
rhsa-2020:4766
Vulnerability from csaf_redhat
Published
2020-11-04 01:48
Modified
2024-11-22 15:19
Summary
Red Hat Security Advisory: libexif security, bug fix, and enhancement update
Notes
Topic
An update for libexif is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The libexif packages provide a library for extracting extra information from image files.
The following packages have been upgraded to a later upstream version: libexif (0.6.22). (BZ#1841320)
Security Fix(es):
* libexif: out of bounds write in exif-data.c (CVE-2019-9278)
* libexif: out of bounds read due to a missing bounds check in exif_data_save_data_entry function in exif-data.c (CVE-2020-0093)
* libexif: integer overflow in exif_data_load_data_thumbnail function in exif-data.c (CVE-2020-0181)
* libexif: integer overflow in exif_data_load_data_content function in exif-data.c (CVE-2020-0198)
* libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and use-after-free (CVE-2020-13113)
* libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time (CVE-2020-13114)
* libexif: out of bounds read due to a missing bounds check in exif_entry_get_value function in exif-entry.c (CVE-2020-0182)
* libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c (CVE-2020-12767)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.3 Release Notes linked from the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for libexif is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The libexif packages provide a library for extracting extra information from image files.\n\nThe following packages have been upgraded to a later upstream version: libexif (0.6.22). (BZ#1841320)\n\nSecurity Fix(es):\n\n* libexif: out of bounds write in exif-data.c (CVE-2019-9278)\n\n* libexif: out of bounds read due to a missing bounds check in exif_data_save_data_entry function in exif-data.c (CVE-2020-0093)\n\n* libexif: integer overflow in exif_data_load_data_thumbnail function in exif-data.c (CVE-2020-0181)\n\n* libexif: integer overflow in exif_data_load_data_content function in exif-data.c (CVE-2020-0198)\n\n* libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and use-after-free (CVE-2020-13113)\n\n* libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time (CVE-2020-13114)\n\n* libexif: out of bounds read due to a missing bounds check in exif_entry_get_value function in exif-entry.c (CVE-2020-0182)\n\n* libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c (CVE-2020-12767)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 8.3 Release Notes linked from the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2020:4766", url: "https://access.redhat.com/errata/RHSA-2020:4766", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.3_release_notes/", url: "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.3_release_notes/", }, { category: "external", summary: "1789031", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789031", }, { category: "external", summary: "1834950", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1834950", }, { category: "external", summary: "1840347", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1840347", }, { category: "external", summary: "1840350", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1840350", }, { category: "external", summary: "1841320", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1841320", }, { category: "external", summary: "1847131", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1847131", }, { category: "external", summary: "1847133", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1847133", }, { category: "external", summary: "1852487", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852487", }, { category: "external", summary: "1852490", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852490", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_4766.json", }, ], title: "Red Hat Security Advisory: libexif security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T15:19:25+00:00", generator: { date: "2024-11-22T15:19:25+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2020:4766", initial_release_date: "2020-11-04T01:48:17+00:00", revision_history: [ { date: "2020-11-04T01:48:17+00:00", number: "1", summary: "Initial version", }, { date: "2020-11-04T01:48:17+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T15:19:25+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 8)", product: { name: "Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::appstream", }, }, }, { category: "product_name", name: "Red Hat CodeReady Linux Builder (v. 8)", product: { name: "Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "libexif-devel-0:0.6.22-4.el8.i686", product: { name: "libexif-devel-0:0.6.22-4.el8.i686", product_id: "libexif-devel-0:0.6.22-4.el8.i686", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-4.el8?arch=i686", }, }, }, { category: "product_version", name: "libexif-debugsource-0:0.6.22-4.el8.i686", product: { name: "libexif-debugsource-0:0.6.22-4.el8.i686", product_id: "libexif-debugsource-0:0.6.22-4.el8.i686", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debugsource@0.6.22-4.el8?arch=i686", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-4.el8.i686", product: { name: "libexif-debuginfo-0:0.6.22-4.el8.i686", product_id: "libexif-debuginfo-0:0.6.22-4.el8.i686", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-4.el8?arch=i686", }, }, }, { category: "product_version", name: "libexif-0:0.6.22-4.el8.i686", product: { name: "libexif-0:0.6.22-4.el8.i686", product_id: "libexif-0:0.6.22-4.el8.i686", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-4.el8?arch=i686", }, }, }, ], category: "architecture", name: "i686", }, { branches: [ { category: "product_version", name: "libexif-devel-0:0.6.22-4.el8.x86_64", product: { name: "libexif-devel-0:0.6.22-4.el8.x86_64", product_id: "libexif-devel-0:0.6.22-4.el8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-4.el8?arch=x86_64", }, }, }, { category: "product_version", name: "libexif-debugsource-0:0.6.22-4.el8.x86_64", product: { name: "libexif-debugsource-0:0.6.22-4.el8.x86_64", product_id: "libexif-debugsource-0:0.6.22-4.el8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debugsource@0.6.22-4.el8?arch=x86_64", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-4.el8.x86_64", product: { name: "libexif-debuginfo-0:0.6.22-4.el8.x86_64", product_id: "libexif-debuginfo-0:0.6.22-4.el8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-4.el8?arch=x86_64", }, }, }, { category: "product_version", name: "libexif-0:0.6.22-4.el8.x86_64", product: { name: "libexif-0:0.6.22-4.el8.x86_64", product_id: "libexif-0:0.6.22-4.el8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-4.el8?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "libexif-devel-0:0.6.22-4.el8.ppc64le", product: { name: "libexif-devel-0:0.6.22-4.el8.ppc64le", product_id: "libexif-devel-0:0.6.22-4.el8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-4.el8?arch=ppc64le", }, }, }, { category: "product_version", name: "libexif-debugsource-0:0.6.22-4.el8.ppc64le", product: { name: "libexif-debugsource-0:0.6.22-4.el8.ppc64le", product_id: "libexif-debugsource-0:0.6.22-4.el8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debugsource@0.6.22-4.el8?arch=ppc64le", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-4.el8.ppc64le", product: { name: "libexif-debuginfo-0:0.6.22-4.el8.ppc64le", product_id: "libexif-debuginfo-0:0.6.22-4.el8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-4.el8?arch=ppc64le", }, }, }, { category: "product_version", name: "libexif-0:0.6.22-4.el8.ppc64le", product: { name: "libexif-0:0.6.22-4.el8.ppc64le", product_id: "libexif-0:0.6.22-4.el8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-4.el8?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "libexif-devel-0:0.6.22-4.el8.s390x", product: { name: "libexif-devel-0:0.6.22-4.el8.s390x", product_id: "libexif-devel-0:0.6.22-4.el8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-4.el8?arch=s390x", }, }, }, { category: "product_version", name: "libexif-debugsource-0:0.6.22-4.el8.s390x", product: { name: "libexif-debugsource-0:0.6.22-4.el8.s390x", product_id: "libexif-debugsource-0:0.6.22-4.el8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debugsource@0.6.22-4.el8?arch=s390x", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-4.el8.s390x", product: { name: "libexif-debuginfo-0:0.6.22-4.el8.s390x", product_id: "libexif-debuginfo-0:0.6.22-4.el8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-4.el8?arch=s390x", }, }, }, { category: "product_version", name: "libexif-0:0.6.22-4.el8.s390x", product: { name: "libexif-0:0.6.22-4.el8.s390x", product_id: "libexif-0:0.6.22-4.el8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-4.el8?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "libexif-devel-0:0.6.22-4.el8.aarch64", product: { name: "libexif-devel-0:0.6.22-4.el8.aarch64", product_id: "libexif-devel-0:0.6.22-4.el8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-4.el8?arch=aarch64", }, }, }, { category: "product_version", name: "libexif-debugsource-0:0.6.22-4.el8.aarch64", product: { name: "libexif-debugsource-0:0.6.22-4.el8.aarch64", product_id: "libexif-debugsource-0:0.6.22-4.el8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debugsource@0.6.22-4.el8?arch=aarch64", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-4.el8.aarch64", product: { name: "libexif-debuginfo-0:0.6.22-4.el8.aarch64", product_id: "libexif-debuginfo-0:0.6.22-4.el8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-4.el8?arch=aarch64", }, }, }, { category: "product_version", name: "libexif-0:0.6.22-4.el8.aarch64", product: { name: "libexif-0:0.6.22-4.el8.aarch64", product_id: "libexif-0:0.6.22-4.el8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-4.el8?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "libexif-0:0.6.22-4.el8.src", product: { name: "libexif-0:0.6.22-4.el8.src", product_id: "libexif-0:0.6.22-4.el8.src", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-4.el8?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", }, product_reference: "libexif-0:0.6.22-4.el8.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", }, product_reference: "libexif-0:0.6.22-4.el8.i686", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", }, product_reference: "libexif-0:0.6.22-4.el8.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", }, product_reference: "libexif-0:0.6.22-4.el8.s390x", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.src as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", }, product_reference: "libexif-0:0.6.22-4.el8.src", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", }, product_reference: "libexif-0:0.6.22-4.el8.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-4.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", }, product_reference: "libexif-debuginfo-0:0.6.22-4.el8.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-4.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", }, product_reference: "libexif-debuginfo-0:0.6.22-4.el8.i686", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-4.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", }, product_reference: "libexif-debuginfo-0:0.6.22-4.el8.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-4.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", }, product_reference: "libexif-debuginfo-0:0.6.22-4.el8.s390x", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-4.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", }, product_reference: "libexif-debuginfo-0:0.6.22-4.el8.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debugsource-0:0.6.22-4.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", }, product_reference: "libexif-debugsource-0:0.6.22-4.el8.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debugsource-0:0.6.22-4.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", }, product_reference: "libexif-debugsource-0:0.6.22-4.el8.i686", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debugsource-0:0.6.22-4.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", }, product_reference: "libexif-debugsource-0:0.6.22-4.el8.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debugsource-0:0.6.22-4.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", }, product_reference: "libexif-debugsource-0:0.6.22-4.el8.s390x", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debugsource-0:0.6.22-4.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", }, product_reference: "libexif-debugsource-0:0.6.22-4.el8.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-4.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", }, product_reference: "libexif-devel-0:0.6.22-4.el8.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-4.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", }, product_reference: "libexif-devel-0:0.6.22-4.el8.i686", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-4.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", }, product_reference: "libexif-devel-0:0.6.22-4.el8.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-4.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", }, product_reference: "libexif-devel-0:0.6.22-4.el8.s390x", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-4.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", }, product_reference: "libexif-devel-0:0.6.22-4.el8.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", }, product_reference: "libexif-0:0.6.22-4.el8.aarch64", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", }, product_reference: "libexif-0:0.6.22-4.el8.i686", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", }, product_reference: "libexif-0:0.6.22-4.el8.ppc64le", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", }, product_reference: "libexif-0:0.6.22-4.el8.s390x", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.src as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", }, product_reference: "libexif-0:0.6.22-4.el8.src", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", }, product_reference: "libexif-0:0.6.22-4.el8.x86_64", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-4.el8.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", }, product_reference: "libexif-debuginfo-0:0.6.22-4.el8.aarch64", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-4.el8.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", }, product_reference: "libexif-debuginfo-0:0.6.22-4.el8.i686", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-4.el8.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", }, product_reference: "libexif-debuginfo-0:0.6.22-4.el8.ppc64le", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-4.el8.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", }, product_reference: "libexif-debuginfo-0:0.6.22-4.el8.s390x", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-4.el8.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", }, product_reference: "libexif-debuginfo-0:0.6.22-4.el8.x86_64", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debugsource-0:0.6.22-4.el8.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", }, product_reference: "libexif-debugsource-0:0.6.22-4.el8.aarch64", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debugsource-0:0.6.22-4.el8.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", }, product_reference: "libexif-debugsource-0:0.6.22-4.el8.i686", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debugsource-0:0.6.22-4.el8.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", }, product_reference: "libexif-debugsource-0:0.6.22-4.el8.ppc64le", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debugsource-0:0.6.22-4.el8.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", }, product_reference: "libexif-debugsource-0:0.6.22-4.el8.s390x", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debugsource-0:0.6.22-4.el8.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", }, product_reference: "libexif-debugsource-0:0.6.22-4.el8.x86_64", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-4.el8.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", }, product_reference: "libexif-devel-0:0.6.22-4.el8.aarch64", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-4.el8.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", }, product_reference: "libexif-devel-0:0.6.22-4.el8.i686", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-4.el8.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", }, product_reference: "libexif-devel-0:0.6.22-4.el8.ppc64le", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-4.el8.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", }, product_reference: "libexif-devel-0:0.6.22-4.el8.s390x", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-4.el8.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", }, product_reference: "libexif-devel-0:0.6.22-4.el8.x86_64", relates_to_product_reference: "CRB-8.3.0.GA", }, ], }, vulnerabilities: [ { cve: "CVE-2019-9278", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, discovery_date: "2019-12-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789031", }, ], notes: [ { category: "description", text: "In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media content provider with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112537774", title: "Vulnerability description", }, { category: "summary", text: "libexif: out of bounds write in exif-data.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9278", }, { category: "external", summary: "RHBZ#1789031", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789031", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9278", url: "https://www.cve.org/CVERecord?id=CVE-2019-9278", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9278", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9278", }, ], release_date: "2019-12-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:48:17+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4766", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "libexif: out of bounds write in exif-data.c", }, { cve: "CVE-2020-0093", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2020-05-14T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1852487", }, ], notes: [ { category: "description", text: "In exif_data_save_data_entry of exif-data.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-148705132", title: "Vulnerability description", }, { category: "summary", text: "libexif: out of bounds read due to a missing bounds check in exif_data_save_data_entry function in exif-data.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-0093", }, { category: "external", summary: "RHBZ#1852487", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852487", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-0093", url: "https://www.cve.org/CVERecord?id=CVE-2020-0093", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-0093", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-0093", }, ], release_date: "2020-05-04T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:48:17+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4766", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "libexif: out of bounds read due to a missing bounds check in exif_data_save_data_entry function in exif-data.c", }, { cve: "CVE-2020-0181", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, discovery_date: "2020-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1847131", }, ], notes: [ { category: "description", text: "In exif_data_load_data_thumbnail of exif-data.c, there is a possible denial of service due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-145075076", title: "Vulnerability description", }, { category: "summary", text: "libexif: integer overflow in exif_data_load_data_thumbnail function in exif-data.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-0181", }, { category: "external", summary: "RHBZ#1847131", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1847131", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-0181", url: "https://www.cve.org/CVERecord?id=CVE-2020-0181", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-0181", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-0181", }, ], release_date: "2020-06-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:48:17+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4766", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.2, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H", version: "3.1", }, products: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "libexif: integer overflow in exif_data_load_data_thumbnail function in exif-data.c", }, { cve: "CVE-2020-0182", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2020-06-11T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1852490", }, ], notes: [ { category: "description", text: "In exif_entry_get_value of exif-entry.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-147140917", title: "Vulnerability description", }, { category: "summary", text: "libexif: out of bounds read due to a missing bounds check in exif_entry_get_value function in exif-entry.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-0182", }, { category: "external", summary: "RHBZ#1852490", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852490", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-0182", url: "https://www.cve.org/CVERecord?id=CVE-2020-0182", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-0182", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-0182", }, ], release_date: "2020-06-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:48:17+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4766", }, { category: "workaround", details: "This flaw could be mitigated by not passing untrusted input to libexif.", product_ids: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L", version: "3.1", }, products: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "libexif: out of bounds read due to a missing bounds check in exif_entry_get_value function in exif-entry.c", }, { cve: "CVE-2020-0198", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2020-06-07T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1847133", }, ], notes: [ { category: "description", text: "In exif_data_load_data_content of exif-data.c, there is a possible UBSAN abort due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-146428941", title: "Vulnerability description", }, { category: "summary", text: "libexif: integer overflow in exif_data_load_data_content function in exif-data.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-0198", }, { category: "external", summary: "RHBZ#1847133", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1847133", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-0198", url: "https://www.cve.org/CVERecord?id=CVE-2020-0198", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-0198", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-0198", }, ], release_date: "2020-06-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:48:17+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4766", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "libexif: integer overflow in exif_data_load_data_content function in exif-data.c", }, { cve: "CVE-2020-12767", cwe: { id: "CWE-369", name: "Divide By Zero", }, discovery_date: "2020-05-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1834950", }, ], notes: [ { category: "description", text: "exif_entry_get_value in exif-entry.c in libexif 0.6.21 has a divide-by-zero error.", title: "Vulnerability description", }, { category: "summary", text: "libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-12767", }, { category: "external", summary: "RHBZ#1834950", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1834950", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-12767", url: "https://www.cve.org/CVERecord?id=CVE-2020-12767", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-12767", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-12767", }, ], release_date: "2020-02-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:48:17+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4766", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 6.2, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c", }, { cve: "CVE-2020-13113", cwe: { id: "CWE-822", name: "Untrusted Pointer Dereference", }, discovery_date: "2020-05-21T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1840347", }, ], notes: [ { category: "description", text: "An issue was discovered in libexif before 0.6.22. Use of uninitialized memory in EXIF Makernote handling could lead to crashes and potential use-after-free conditions.", title: "Vulnerability description", }, { category: "summary", text: "libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and use-after-free", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-13113", }, { category: "external", summary: "RHBZ#1840347", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1840347", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-13113", url: "https://www.cve.org/CVERecord?id=CVE-2020-13113", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-13113", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-13113", }, ], release_date: "2020-05-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:48:17+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4766", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.2, baseSeverity: "HIGH", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and use-after-free", }, { cve: "CVE-2020-13114", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2020-05-21T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1840350", }, ], notes: [ { category: "description", text: "An issue was discovered in libexif before 0.6.22. An unrestricted size in handling Canon EXIF MakerNote data could lead to consumption of large amounts of compute time for decoding EXIF data.", title: "Vulnerability description", }, { category: "summary", text: "libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-13114", }, { category: "external", summary: "RHBZ#1840350", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1840350", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-13114", url: "https://www.cve.org/CVERecord?id=CVE-2020-13114", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-13114", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-13114", }, ], release_date: "2020-05-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:48:17+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4766", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time", }, ], }
rhsa-2020_4766
Vulnerability from csaf_redhat
Published
2020-11-04 01:48
Modified
2024-11-22 15:19
Summary
Red Hat Security Advisory: libexif security, bug fix, and enhancement update
Notes
Topic
An update for libexif is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The libexif packages provide a library for extracting extra information from image files.
The following packages have been upgraded to a later upstream version: libexif (0.6.22). (BZ#1841320)
Security Fix(es):
* libexif: out of bounds write in exif-data.c (CVE-2019-9278)
* libexif: out of bounds read due to a missing bounds check in exif_data_save_data_entry function in exif-data.c (CVE-2020-0093)
* libexif: integer overflow in exif_data_load_data_thumbnail function in exif-data.c (CVE-2020-0181)
* libexif: integer overflow in exif_data_load_data_content function in exif-data.c (CVE-2020-0198)
* libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and use-after-free (CVE-2020-13113)
* libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time (CVE-2020-13114)
* libexif: out of bounds read due to a missing bounds check in exif_entry_get_value function in exif-entry.c (CVE-2020-0182)
* libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c (CVE-2020-12767)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.3 Release Notes linked from the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for libexif is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The libexif packages provide a library for extracting extra information from image files.\n\nThe following packages have been upgraded to a later upstream version: libexif (0.6.22). (BZ#1841320)\n\nSecurity Fix(es):\n\n* libexif: out of bounds write in exif-data.c (CVE-2019-9278)\n\n* libexif: out of bounds read due to a missing bounds check in exif_data_save_data_entry function in exif-data.c (CVE-2020-0093)\n\n* libexif: integer overflow in exif_data_load_data_thumbnail function in exif-data.c (CVE-2020-0181)\n\n* libexif: integer overflow in exif_data_load_data_content function in exif-data.c (CVE-2020-0198)\n\n* libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and use-after-free (CVE-2020-13113)\n\n* libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time (CVE-2020-13114)\n\n* libexif: out of bounds read due to a missing bounds check in exif_entry_get_value function in exif-entry.c (CVE-2020-0182)\n\n* libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c (CVE-2020-12767)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 8.3 Release Notes linked from the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2020:4766", url: "https://access.redhat.com/errata/RHSA-2020:4766", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.3_release_notes/", url: "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.3_release_notes/", }, { category: "external", summary: "1789031", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789031", }, { category: "external", summary: "1834950", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1834950", }, { category: "external", summary: "1840347", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1840347", }, { category: "external", summary: "1840350", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1840350", }, { category: "external", summary: "1841320", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1841320", }, { category: "external", summary: "1847131", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1847131", }, { category: "external", summary: "1847133", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1847133", }, { category: "external", summary: "1852487", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852487", }, { category: "external", summary: "1852490", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852490", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_4766.json", }, ], title: "Red Hat Security Advisory: libexif security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T15:19:25+00:00", generator: { date: "2024-11-22T15:19:25+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2020:4766", initial_release_date: "2020-11-04T01:48:17+00:00", revision_history: [ { date: "2020-11-04T01:48:17+00:00", number: "1", summary: "Initial version", }, { date: "2020-11-04T01:48:17+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T15:19:25+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 8)", product: { name: "Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::appstream", }, }, }, { category: "product_name", name: "Red Hat CodeReady Linux Builder (v. 8)", product: { name: "Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "libexif-devel-0:0.6.22-4.el8.i686", product: { name: "libexif-devel-0:0.6.22-4.el8.i686", product_id: "libexif-devel-0:0.6.22-4.el8.i686", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-4.el8?arch=i686", }, }, }, { category: "product_version", name: "libexif-debugsource-0:0.6.22-4.el8.i686", product: { name: "libexif-debugsource-0:0.6.22-4.el8.i686", product_id: "libexif-debugsource-0:0.6.22-4.el8.i686", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debugsource@0.6.22-4.el8?arch=i686", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-4.el8.i686", product: { name: "libexif-debuginfo-0:0.6.22-4.el8.i686", product_id: "libexif-debuginfo-0:0.6.22-4.el8.i686", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-4.el8?arch=i686", }, }, }, { category: "product_version", name: "libexif-0:0.6.22-4.el8.i686", product: { name: "libexif-0:0.6.22-4.el8.i686", product_id: "libexif-0:0.6.22-4.el8.i686", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-4.el8?arch=i686", }, }, }, ], category: "architecture", name: "i686", }, { branches: [ { category: "product_version", name: "libexif-devel-0:0.6.22-4.el8.x86_64", product: { name: "libexif-devel-0:0.6.22-4.el8.x86_64", product_id: "libexif-devel-0:0.6.22-4.el8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-4.el8?arch=x86_64", }, }, }, { category: "product_version", name: "libexif-debugsource-0:0.6.22-4.el8.x86_64", product: { name: "libexif-debugsource-0:0.6.22-4.el8.x86_64", product_id: "libexif-debugsource-0:0.6.22-4.el8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debugsource@0.6.22-4.el8?arch=x86_64", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-4.el8.x86_64", product: { name: "libexif-debuginfo-0:0.6.22-4.el8.x86_64", product_id: "libexif-debuginfo-0:0.6.22-4.el8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-4.el8?arch=x86_64", }, }, }, { category: "product_version", name: "libexif-0:0.6.22-4.el8.x86_64", product: { name: "libexif-0:0.6.22-4.el8.x86_64", product_id: "libexif-0:0.6.22-4.el8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-4.el8?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "libexif-devel-0:0.6.22-4.el8.ppc64le", product: { name: "libexif-devel-0:0.6.22-4.el8.ppc64le", product_id: "libexif-devel-0:0.6.22-4.el8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-4.el8?arch=ppc64le", }, }, }, { category: "product_version", name: "libexif-debugsource-0:0.6.22-4.el8.ppc64le", product: { name: "libexif-debugsource-0:0.6.22-4.el8.ppc64le", product_id: "libexif-debugsource-0:0.6.22-4.el8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debugsource@0.6.22-4.el8?arch=ppc64le", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-4.el8.ppc64le", product: { name: "libexif-debuginfo-0:0.6.22-4.el8.ppc64le", product_id: "libexif-debuginfo-0:0.6.22-4.el8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-4.el8?arch=ppc64le", }, }, }, { category: "product_version", name: "libexif-0:0.6.22-4.el8.ppc64le", product: { name: "libexif-0:0.6.22-4.el8.ppc64le", product_id: "libexif-0:0.6.22-4.el8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-4.el8?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "libexif-devel-0:0.6.22-4.el8.s390x", product: { name: "libexif-devel-0:0.6.22-4.el8.s390x", product_id: "libexif-devel-0:0.6.22-4.el8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-4.el8?arch=s390x", }, }, }, { category: "product_version", name: "libexif-debugsource-0:0.6.22-4.el8.s390x", product: { name: "libexif-debugsource-0:0.6.22-4.el8.s390x", product_id: "libexif-debugsource-0:0.6.22-4.el8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debugsource@0.6.22-4.el8?arch=s390x", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-4.el8.s390x", product: { name: "libexif-debuginfo-0:0.6.22-4.el8.s390x", product_id: "libexif-debuginfo-0:0.6.22-4.el8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-4.el8?arch=s390x", }, }, }, { category: "product_version", name: "libexif-0:0.6.22-4.el8.s390x", product: { name: "libexif-0:0.6.22-4.el8.s390x", product_id: "libexif-0:0.6.22-4.el8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-4.el8?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "libexif-devel-0:0.6.22-4.el8.aarch64", product: { name: "libexif-devel-0:0.6.22-4.el8.aarch64", product_id: "libexif-devel-0:0.6.22-4.el8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-4.el8?arch=aarch64", }, }, }, { category: "product_version", name: "libexif-debugsource-0:0.6.22-4.el8.aarch64", product: { name: "libexif-debugsource-0:0.6.22-4.el8.aarch64", product_id: "libexif-debugsource-0:0.6.22-4.el8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debugsource@0.6.22-4.el8?arch=aarch64", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-4.el8.aarch64", product: { name: "libexif-debuginfo-0:0.6.22-4.el8.aarch64", product_id: "libexif-debuginfo-0:0.6.22-4.el8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-4.el8?arch=aarch64", }, }, }, { category: "product_version", name: "libexif-0:0.6.22-4.el8.aarch64", product: { name: "libexif-0:0.6.22-4.el8.aarch64", product_id: "libexif-0:0.6.22-4.el8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-4.el8?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "libexif-0:0.6.22-4.el8.src", product: { name: "libexif-0:0.6.22-4.el8.src", product_id: "libexif-0:0.6.22-4.el8.src", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-4.el8?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", }, product_reference: "libexif-0:0.6.22-4.el8.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", }, product_reference: "libexif-0:0.6.22-4.el8.i686", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", }, product_reference: "libexif-0:0.6.22-4.el8.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", }, product_reference: "libexif-0:0.6.22-4.el8.s390x", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.src as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", }, product_reference: "libexif-0:0.6.22-4.el8.src", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", }, product_reference: "libexif-0:0.6.22-4.el8.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-4.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", }, product_reference: "libexif-debuginfo-0:0.6.22-4.el8.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-4.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", }, product_reference: "libexif-debuginfo-0:0.6.22-4.el8.i686", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-4.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", }, product_reference: "libexif-debuginfo-0:0.6.22-4.el8.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-4.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", }, product_reference: "libexif-debuginfo-0:0.6.22-4.el8.s390x", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-4.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", }, product_reference: "libexif-debuginfo-0:0.6.22-4.el8.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debugsource-0:0.6.22-4.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", }, product_reference: "libexif-debugsource-0:0.6.22-4.el8.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debugsource-0:0.6.22-4.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", }, product_reference: "libexif-debugsource-0:0.6.22-4.el8.i686", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debugsource-0:0.6.22-4.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", }, product_reference: "libexif-debugsource-0:0.6.22-4.el8.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debugsource-0:0.6.22-4.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", }, product_reference: "libexif-debugsource-0:0.6.22-4.el8.s390x", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debugsource-0:0.6.22-4.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", }, product_reference: "libexif-debugsource-0:0.6.22-4.el8.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-4.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", }, product_reference: "libexif-devel-0:0.6.22-4.el8.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-4.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", }, product_reference: "libexif-devel-0:0.6.22-4.el8.i686", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-4.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", }, product_reference: "libexif-devel-0:0.6.22-4.el8.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-4.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", }, product_reference: "libexif-devel-0:0.6.22-4.el8.s390x", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-4.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", }, product_reference: "libexif-devel-0:0.6.22-4.el8.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", }, product_reference: "libexif-0:0.6.22-4.el8.aarch64", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", }, product_reference: "libexif-0:0.6.22-4.el8.i686", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", }, product_reference: "libexif-0:0.6.22-4.el8.ppc64le", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", }, product_reference: "libexif-0:0.6.22-4.el8.s390x", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.src as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", }, product_reference: "libexif-0:0.6.22-4.el8.src", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", }, product_reference: "libexif-0:0.6.22-4.el8.x86_64", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-4.el8.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", }, product_reference: "libexif-debuginfo-0:0.6.22-4.el8.aarch64", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-4.el8.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", }, product_reference: "libexif-debuginfo-0:0.6.22-4.el8.i686", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-4.el8.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", }, product_reference: "libexif-debuginfo-0:0.6.22-4.el8.ppc64le", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-4.el8.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", }, product_reference: "libexif-debuginfo-0:0.6.22-4.el8.s390x", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-4.el8.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", }, product_reference: "libexif-debuginfo-0:0.6.22-4.el8.x86_64", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debugsource-0:0.6.22-4.el8.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", }, product_reference: "libexif-debugsource-0:0.6.22-4.el8.aarch64", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debugsource-0:0.6.22-4.el8.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", }, product_reference: "libexif-debugsource-0:0.6.22-4.el8.i686", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debugsource-0:0.6.22-4.el8.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", }, product_reference: "libexif-debugsource-0:0.6.22-4.el8.ppc64le", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debugsource-0:0.6.22-4.el8.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", }, product_reference: "libexif-debugsource-0:0.6.22-4.el8.s390x", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debugsource-0:0.6.22-4.el8.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", }, product_reference: "libexif-debugsource-0:0.6.22-4.el8.x86_64", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-4.el8.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", }, product_reference: "libexif-devel-0:0.6.22-4.el8.aarch64", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-4.el8.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", }, product_reference: "libexif-devel-0:0.6.22-4.el8.i686", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-4.el8.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", }, product_reference: "libexif-devel-0:0.6.22-4.el8.ppc64le", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-4.el8.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", }, product_reference: "libexif-devel-0:0.6.22-4.el8.s390x", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-4.el8.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", }, product_reference: "libexif-devel-0:0.6.22-4.el8.x86_64", relates_to_product_reference: "CRB-8.3.0.GA", }, ], }, vulnerabilities: [ { cve: "CVE-2019-9278", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, discovery_date: "2019-12-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789031", }, ], notes: [ { category: "description", text: "In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media content provider with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112537774", title: "Vulnerability description", }, { category: "summary", text: "libexif: out of bounds write in exif-data.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9278", }, { category: "external", summary: "RHBZ#1789031", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789031", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9278", url: "https://www.cve.org/CVERecord?id=CVE-2019-9278", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9278", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9278", }, ], release_date: "2019-12-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:48:17+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4766", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "libexif: out of bounds write in exif-data.c", }, { cve: "CVE-2020-0093", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2020-05-14T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1852487", }, ], notes: [ { category: "description", text: "In exif_data_save_data_entry of exif-data.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-148705132", title: "Vulnerability description", }, { category: "summary", text: "libexif: out of bounds read due to a missing bounds check in exif_data_save_data_entry function in exif-data.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-0093", }, { category: "external", summary: "RHBZ#1852487", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852487", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-0093", url: "https://www.cve.org/CVERecord?id=CVE-2020-0093", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-0093", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-0093", }, ], release_date: "2020-05-04T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:48:17+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4766", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "libexif: out of bounds read due to a missing bounds check in exif_data_save_data_entry function in exif-data.c", }, { cve: "CVE-2020-0181", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, discovery_date: "2020-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1847131", }, ], notes: [ { category: "description", text: "In exif_data_load_data_thumbnail of exif-data.c, there is a possible denial of service due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-145075076", title: "Vulnerability description", }, { category: "summary", text: "libexif: integer overflow in exif_data_load_data_thumbnail function in exif-data.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-0181", }, { category: "external", summary: "RHBZ#1847131", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1847131", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-0181", url: "https://www.cve.org/CVERecord?id=CVE-2020-0181", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-0181", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-0181", }, ], release_date: "2020-06-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:48:17+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4766", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.2, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H", version: "3.1", }, products: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "libexif: integer overflow in exif_data_load_data_thumbnail function in exif-data.c", }, { cve: "CVE-2020-0182", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2020-06-11T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1852490", }, ], notes: [ { category: "description", text: "In exif_entry_get_value of exif-entry.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-147140917", title: "Vulnerability description", }, { category: "summary", text: "libexif: out of bounds read due to a missing bounds check in exif_entry_get_value function in exif-entry.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-0182", }, { category: "external", summary: "RHBZ#1852490", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852490", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-0182", url: "https://www.cve.org/CVERecord?id=CVE-2020-0182", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-0182", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-0182", }, ], release_date: "2020-06-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:48:17+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4766", }, { category: "workaround", details: "This flaw could be mitigated by not passing untrusted input to libexif.", product_ids: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L", version: "3.1", }, products: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "libexif: out of bounds read due to a missing bounds check in exif_entry_get_value function in exif-entry.c", }, { cve: "CVE-2020-0198", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2020-06-07T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1847133", }, ], notes: [ { category: "description", text: "In exif_data_load_data_content of exif-data.c, there is a possible UBSAN abort due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-146428941", title: "Vulnerability description", }, { category: "summary", text: "libexif: integer overflow in exif_data_load_data_content function in exif-data.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-0198", }, { category: "external", summary: "RHBZ#1847133", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1847133", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-0198", url: "https://www.cve.org/CVERecord?id=CVE-2020-0198", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-0198", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-0198", }, ], release_date: "2020-06-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:48:17+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4766", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "libexif: integer overflow in exif_data_load_data_content function in exif-data.c", }, { cve: "CVE-2020-12767", cwe: { id: "CWE-369", name: "Divide By Zero", }, discovery_date: "2020-05-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1834950", }, ], notes: [ { category: "description", text: "exif_entry_get_value in exif-entry.c in libexif 0.6.21 has a divide-by-zero error.", title: "Vulnerability description", }, { category: "summary", text: "libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-12767", }, { category: "external", summary: "RHBZ#1834950", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1834950", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-12767", url: "https://www.cve.org/CVERecord?id=CVE-2020-12767", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-12767", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-12767", }, ], release_date: "2020-02-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:48:17+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4766", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 6.2, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c", }, { cve: "CVE-2020-13113", cwe: { id: "CWE-822", name: "Untrusted Pointer Dereference", }, discovery_date: "2020-05-21T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1840347", }, ], notes: [ { category: "description", text: "An issue was discovered in libexif before 0.6.22. Use of uninitialized memory in EXIF Makernote handling could lead to crashes and potential use-after-free conditions.", title: "Vulnerability description", }, { category: "summary", text: "libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and use-after-free", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-13113", }, { category: "external", summary: "RHBZ#1840347", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1840347", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-13113", url: "https://www.cve.org/CVERecord?id=CVE-2020-13113", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-13113", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-13113", }, ], release_date: "2020-05-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:48:17+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4766", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.2, baseSeverity: "HIGH", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and use-after-free", }, { cve: "CVE-2020-13114", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2020-05-21T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1840350", }, ], notes: [ { category: "description", text: "An issue was discovered in libexif before 0.6.22. An unrestricted size in handling Canon EXIF MakerNote data could lead to consumption of large amounts of compute time for decoding EXIF data.", title: "Vulnerability description", }, { category: "summary", text: "libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-13114", }, { category: "external", summary: "RHBZ#1840350", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1840350", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-13114", url: "https://www.cve.org/CVERecord?id=CVE-2020-13114", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-13114", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-13114", }, ], release_date: "2020-05-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:48:17+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4766", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time", }, ], }
rhsa-2020:4040
Vulnerability from csaf_redhat
Published
2020-09-29 20:17
Modified
2024-11-22 15:19
Summary
Red Hat Security Advisory: libexif security, bug fix, and enhancement update
Notes
Topic
An update for libexif is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The libexif packages provide a library for extracting extra information from image files.
The following packages have been upgraded to a later upstream version: libexif (0.6.22). (BZ#1841316)
Security Fix(es):
* libexif: out of bound write in exif-data.c (CVE-2019-9278)
* libexif: out of bounds read due to a missing bounds check in exif_data_save_data_entry function in exif-data.c (CVE-2020-0093)
* libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and use-after-free (CVE-2020-13113)
* libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time (CVE-2020-13114)
* libexif: out of bounds read due to a missing bounds check in exif_entry_get_value function in exif-entry.c (CVE-2020-0182)
* libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c (CVE-2020-12767)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.9 Release Notes linked from the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for libexif is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The libexif packages provide a library for extracting extra information from image files.\n\nThe following packages have been upgraded to a later upstream version: libexif (0.6.22). (BZ#1841316)\n\nSecurity Fix(es):\n\n* libexif: out of bound write in exif-data.c (CVE-2019-9278)\n\n* libexif: out of bounds read due to a missing bounds check in exif_data_save_data_entry function in exif-data.c (CVE-2020-0093)\n\n* libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and use-after-free (CVE-2020-13113)\n\n* libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time (CVE-2020-13114)\n\n* libexif: out of bounds read due to a missing bounds check in exif_entry_get_value function in exif-entry.c (CVE-2020-0182)\n\n* libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c (CVE-2020-12767)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 7.9 Release Notes linked from the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2020:4040", url: "https://access.redhat.com/errata/RHSA-2020:4040", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.9_release_notes/index", url: "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.9_release_notes/index", }, { category: "external", summary: "1789031", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789031", }, { category: "external", summary: "1834950", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1834950", }, { category: "external", summary: "1840347", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1840347", }, { category: "external", summary: "1840350", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1840350", }, { category: "external", summary: "1841316", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1841316", }, { category: "external", summary: "1852487", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852487", }, { category: "external", summary: "1852490", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852490", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_4040.json", }, ], title: "Red Hat Security Advisory: libexif security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T15:19:16+00:00", generator: { date: "2024-11-22T15:19:16+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2020:4040", initial_release_date: "2020-09-29T20:17:18+00:00", revision_history: [ { date: "2020-09-29T20:17:18+00:00", number: "1", summary: "Initial version", }, { date: "2020-09-29T20:17:18+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T15:19:16+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux Client (v. 7)", product: { name: "Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::client", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Client Optional (v. 7)", product: { name: "Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::client", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product: { name: "Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::computenode", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Server (v. 7)", product: { name: "Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::server", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Server Optional (v. 7)", product: { name: "Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::server", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Workstation (v. 7)", product: { name: "Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::workstation", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Workstation Optional (v. 7)", product: { name: "Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::workstation", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "libexif-0:0.6.22-1.el7.i686", product: { name: "libexif-0:0.6.22-1.el7.i686", product_id: "libexif-0:0.6.22-1.el7.i686", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-1.el7?arch=i686", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-1.el7.i686", product: { name: "libexif-debuginfo-0:0.6.22-1.el7.i686", product_id: "libexif-debuginfo-0:0.6.22-1.el7.i686", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-1.el7?arch=i686", }, }, }, { category: "product_version", name: "libexif-devel-0:0.6.22-1.el7.i686", product: { name: "libexif-devel-0:0.6.22-1.el7.i686", product_id: "libexif-devel-0:0.6.22-1.el7.i686", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-1.el7?arch=i686", }, }, }, ], category: "architecture", name: "i686", }, { branches: [ { category: "product_version", name: "libexif-0:0.6.22-1.el7.x86_64", product: { name: "libexif-0:0.6.22-1.el7.x86_64", product_id: "libexif-0:0.6.22-1.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-1.el7?arch=x86_64", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-1.el7.x86_64", product: { name: "libexif-debuginfo-0:0.6.22-1.el7.x86_64", product_id: "libexif-debuginfo-0:0.6.22-1.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-1.el7?arch=x86_64", }, }, }, { category: "product_version", name: "libexif-devel-0:0.6.22-1.el7.x86_64", product: { name: "libexif-devel-0:0.6.22-1.el7.x86_64", product_id: "libexif-devel-0:0.6.22-1.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-1.el7?arch=x86_64", }, }, }, { category: "product_version", name: "libexif-doc-0:0.6.22-1.el7.x86_64", product: { name: "libexif-doc-0:0.6.22-1.el7.x86_64", product_id: "libexif-doc-0:0.6.22-1.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-doc@0.6.22-1.el7?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "libexif-0:0.6.22-1.el7.src", product: { name: "libexif-0:0.6.22-1.el7.src", product_id: "libexif-0:0.6.22-1.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-1.el7?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "libexif-0:0.6.22-1.el7.s390x", product: { name: "libexif-0:0.6.22-1.el7.s390x", product_id: "libexif-0:0.6.22-1.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-1.el7?arch=s390x", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-1.el7.s390x", product: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390x", product_id: "libexif-debuginfo-0:0.6.22-1.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-1.el7?arch=s390x", }, }, }, { category: "product_version", name: "libexif-devel-0:0.6.22-1.el7.s390x", product: { name: "libexif-devel-0:0.6.22-1.el7.s390x", product_id: "libexif-devel-0:0.6.22-1.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-1.el7?arch=s390x", }, }, }, { category: "product_version", name: "libexif-doc-0:0.6.22-1.el7.s390x", product: { name: "libexif-doc-0:0.6.22-1.el7.s390x", product_id: "libexif-doc-0:0.6.22-1.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-doc@0.6.22-1.el7?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "libexif-0:0.6.22-1.el7.s390", product: { name: "libexif-0:0.6.22-1.el7.s390", product_id: "libexif-0:0.6.22-1.el7.s390", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-1.el7?arch=s390", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-1.el7.s390", product: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390", product_id: "libexif-debuginfo-0:0.6.22-1.el7.s390", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-1.el7?arch=s390", }, }, }, { category: "product_version", name: "libexif-devel-0:0.6.22-1.el7.s390", product: { name: "libexif-devel-0:0.6.22-1.el7.s390", product_id: "libexif-devel-0:0.6.22-1.el7.s390", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-1.el7?arch=s390", }, }, }, ], category: "architecture", name: "s390", }, { branches: [ { category: "product_version", name: "libexif-0:0.6.22-1.el7.ppc64", product: { name: "libexif-0:0.6.22-1.el7.ppc64", product_id: "libexif-0:0.6.22-1.el7.ppc64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-1.el7?arch=ppc64", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64", product: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64", product_id: "libexif-debuginfo-0:0.6.22-1.el7.ppc64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-1.el7?arch=ppc64", }, }, }, { category: "product_version", name: "libexif-devel-0:0.6.22-1.el7.ppc64", product: { name: "libexif-devel-0:0.6.22-1.el7.ppc64", product_id: "libexif-devel-0:0.6.22-1.el7.ppc64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-1.el7?arch=ppc64", }, }, }, { category: "product_version", name: "libexif-doc-0:0.6.22-1.el7.ppc64", product: { name: "libexif-doc-0:0.6.22-1.el7.ppc64", product_id: "libexif-doc-0:0.6.22-1.el7.ppc64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-doc@0.6.22-1.el7?arch=ppc64", }, }, }, ], category: "architecture", name: "ppc64", }, { branches: [ { category: "product_version", name: "libexif-0:0.6.22-1.el7.ppc", product: { name: "libexif-0:0.6.22-1.el7.ppc", product_id: "libexif-0:0.6.22-1.el7.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-1.el7?arch=ppc", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-1.el7.ppc", product: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc", product_id: "libexif-debuginfo-0:0.6.22-1.el7.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-1.el7?arch=ppc", }, }, }, { category: "product_version", name: "libexif-devel-0:0.6.22-1.el7.ppc", product: { name: "libexif-devel-0:0.6.22-1.el7.ppc", product_id: "libexif-devel-0:0.6.22-1.el7.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-1.el7?arch=ppc", }, }, }, ], category: "architecture", name: "ppc", }, { branches: [ { category: "product_version", name: "libexif-0:0.6.22-1.el7.ppc64le", product: { name: "libexif-0:0.6.22-1.el7.ppc64le", product_id: "libexif-0:0.6.22-1.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-1.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", product: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", product_id: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-1.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "libexif-devel-0:0.6.22-1.el7.ppc64le", product: { name: "libexif-devel-0:0.6.22-1.el7.ppc64le", product_id: "libexif-devel-0:0.6.22-1.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-1.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "libexif-doc-0:0.6.22-1.el7.ppc64le", product: { name: "libexif-doc-0:0.6.22-1.el7.ppc64le", product_id: "libexif-doc-0:0.6.22-1.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-doc@0.6.22-1.el7?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-0:0.6.22-1.el7.i686", }, product_reference: "libexif-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-0:0.6.22-1.el7.s390", }, product_reference: "libexif-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.src as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-0:0.6.22-1.el7.src", }, product_reference: "libexif-0:0.6.22-1.el7.src", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", }, product_reference: "libexif-devel-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-doc-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", }, product_reference: "libexif-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", }, product_reference: "libexif-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.src as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", }, product_reference: "libexif-0:0.6.22-1.el7.src", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", }, product_reference: "libexif-devel-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-doc-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", }, product_reference: "libexif-0:0.6.22-1.el7.i686", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", }, product_reference: "libexif-0:0.6.22-1.el7.s390", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.src as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", }, product_reference: "libexif-0:0.6.22-1.el7.src", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.i686", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", }, product_reference: "libexif-devel-0:0.6.22-1.el7.i686", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-doc-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-0:0.6.22-1.el7.i686", }, product_reference: "libexif-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-0:0.6.22-1.el7.s390", }, product_reference: "libexif-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.src as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-0:0.6.22-1.el7.src", }, product_reference: "libexif-0:0.6.22-1.el7.src", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", }, product_reference: "libexif-devel-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-doc-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", }, product_reference: "libexif-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", }, product_reference: "libexif-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.src as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", }, product_reference: "libexif-0:0.6.22-1.el7.src", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", }, product_reference: "libexif-devel-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-doc-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", }, product_reference: "libexif-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", }, product_reference: "libexif-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.src as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", }, product_reference: "libexif-0:0.6.22-1.el7.src", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", }, product_reference: "libexif-devel-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-doc-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", }, product_reference: "libexif-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", }, product_reference: "libexif-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", }, product_reference: "libexif-0:0.6.22-1.el7.src", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", }, product_reference: "libexif-devel-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-doc-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Workstation-optional-7.9", }, ], }, vulnerabilities: [ { cve: "CVE-2019-9278", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, discovery_date: "2019-12-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789031", }, ], notes: [ { category: "description", text: "In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media content provider with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112537774", title: "Vulnerability description", }, { category: "summary", text: "libexif: out of bounds write in exif-data.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9278", }, { category: "external", summary: "RHBZ#1789031", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789031", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9278", url: "https://www.cve.org/CVERecord?id=CVE-2019-9278", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9278", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9278", }, ], release_date: "2019-12-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-09-29T20:17:18+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4040", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "libexif: out of bounds write in exif-data.c", }, { cve: "CVE-2020-0093", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2020-05-14T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1852487", }, ], notes: [ { category: "description", text: "In exif_data_save_data_entry of exif-data.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-148705132", title: "Vulnerability description", }, { category: "summary", text: "libexif: out of bounds read due to a missing bounds check in exif_data_save_data_entry function in exif-data.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-0093", }, { category: "external", summary: "RHBZ#1852487", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852487", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-0093", url: "https://www.cve.org/CVERecord?id=CVE-2020-0093", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-0093", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-0093", }, ], release_date: "2020-05-04T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-09-29T20:17:18+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4040", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "libexif: out of bounds read due to a missing bounds check in exif_data_save_data_entry function in exif-data.c", }, { cve: "CVE-2020-0182", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2020-06-11T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1852490", }, ], notes: [ { category: "description", text: "In exif_entry_get_value of exif-entry.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-147140917", title: "Vulnerability description", }, { category: "summary", text: "libexif: out of bounds read due to a missing bounds check in exif_entry_get_value function in exif-entry.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-0182", }, { category: "external", summary: "RHBZ#1852490", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852490", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-0182", url: "https://www.cve.org/CVERecord?id=CVE-2020-0182", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-0182", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-0182", }, ], release_date: "2020-06-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-09-29T20:17:18+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4040", }, { category: "workaround", details: "This flaw could be mitigated by not passing untrusted input to libexif.", product_ids: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L", version: "3.1", }, products: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "libexif: out of bounds read due to a missing bounds check in exif_entry_get_value function in exif-entry.c", }, { cve: "CVE-2020-12767", cwe: { id: "CWE-369", name: "Divide By Zero", }, discovery_date: "2020-05-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1834950", }, ], notes: [ { category: "description", text: "exif_entry_get_value in exif-entry.c in libexif 0.6.21 has a divide-by-zero error.", title: "Vulnerability description", }, { category: "summary", text: "libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-12767", }, { category: "external", summary: "RHBZ#1834950", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1834950", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-12767", url: "https://www.cve.org/CVERecord?id=CVE-2020-12767", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-12767", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-12767", }, ], release_date: "2020-02-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-09-29T20:17:18+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4040", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 6.2, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c", }, { cve: "CVE-2020-13113", cwe: { id: "CWE-822", name: "Untrusted Pointer Dereference", }, discovery_date: "2020-05-21T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1840347", }, ], notes: [ { category: "description", text: "An issue was discovered in libexif before 0.6.22. Use of uninitialized memory in EXIF Makernote handling could lead to crashes and potential use-after-free conditions.", title: "Vulnerability description", }, { category: "summary", text: "libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and use-after-free", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-13113", }, { category: "external", summary: "RHBZ#1840347", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1840347", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-13113", url: "https://www.cve.org/CVERecord?id=CVE-2020-13113", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-13113", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-13113", }, ], release_date: "2020-05-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-09-29T20:17:18+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4040", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.2, baseSeverity: "HIGH", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H", version: "3.1", }, products: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and use-after-free", }, { cve: "CVE-2020-13114", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2020-05-21T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1840350", }, ], notes: [ { category: "description", text: "An issue was discovered in libexif before 0.6.22. An unrestricted size in handling Canon EXIF MakerNote data could lead to consumption of large amounts of compute time for decoding EXIF data.", title: "Vulnerability description", }, { category: "summary", text: "libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-13114", }, { category: "external", summary: "RHBZ#1840350", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1840350", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-13114", url: "https://www.cve.org/CVERecord?id=CVE-2020-13114", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-13114", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-13114", }, ], release_date: "2020-05-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-09-29T20:17:18+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4040", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time", }, ], }
rhsa-2020_4040
Vulnerability from csaf_redhat
Published
2020-09-29 20:17
Modified
2024-11-22 15:19
Summary
Red Hat Security Advisory: libexif security, bug fix, and enhancement update
Notes
Topic
An update for libexif is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The libexif packages provide a library for extracting extra information from image files.
The following packages have been upgraded to a later upstream version: libexif (0.6.22). (BZ#1841316)
Security Fix(es):
* libexif: out of bound write in exif-data.c (CVE-2019-9278)
* libexif: out of bounds read due to a missing bounds check in exif_data_save_data_entry function in exif-data.c (CVE-2020-0093)
* libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and use-after-free (CVE-2020-13113)
* libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time (CVE-2020-13114)
* libexif: out of bounds read due to a missing bounds check in exif_entry_get_value function in exif-entry.c (CVE-2020-0182)
* libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c (CVE-2020-12767)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.9 Release Notes linked from the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for libexif is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The libexif packages provide a library for extracting extra information from image files.\n\nThe following packages have been upgraded to a later upstream version: libexif (0.6.22). (BZ#1841316)\n\nSecurity Fix(es):\n\n* libexif: out of bound write in exif-data.c (CVE-2019-9278)\n\n* libexif: out of bounds read due to a missing bounds check in exif_data_save_data_entry function in exif-data.c (CVE-2020-0093)\n\n* libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and use-after-free (CVE-2020-13113)\n\n* libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time (CVE-2020-13114)\n\n* libexif: out of bounds read due to a missing bounds check in exif_entry_get_value function in exif-entry.c (CVE-2020-0182)\n\n* libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c (CVE-2020-12767)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 7.9 Release Notes linked from the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2020:4040", url: "https://access.redhat.com/errata/RHSA-2020:4040", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.9_release_notes/index", url: "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.9_release_notes/index", }, { category: "external", summary: "1789031", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789031", }, { category: "external", summary: "1834950", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1834950", }, { category: "external", summary: "1840347", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1840347", }, { category: "external", summary: "1840350", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1840350", }, { category: "external", summary: "1841316", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1841316", }, { category: "external", summary: "1852487", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852487", }, { category: "external", summary: "1852490", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852490", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_4040.json", }, ], title: "Red Hat Security Advisory: libexif security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T15:19:16+00:00", generator: { date: "2024-11-22T15:19:16+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2020:4040", initial_release_date: "2020-09-29T20:17:18+00:00", revision_history: [ { date: "2020-09-29T20:17:18+00:00", number: "1", summary: "Initial version", }, { date: "2020-09-29T20:17:18+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T15:19:16+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux Client (v. 7)", product: { name: "Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::client", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Client Optional (v. 7)", product: { name: "Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::client", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product: { name: "Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::computenode", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Server (v. 7)", product: { name: "Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::server", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Server Optional (v. 7)", product: { name: "Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::server", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Workstation (v. 7)", product: { name: "Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::workstation", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Workstation Optional (v. 7)", product: { name: "Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::workstation", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "libexif-0:0.6.22-1.el7.i686", product: { name: "libexif-0:0.6.22-1.el7.i686", product_id: "libexif-0:0.6.22-1.el7.i686", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-1.el7?arch=i686", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-1.el7.i686", product: { name: "libexif-debuginfo-0:0.6.22-1.el7.i686", product_id: "libexif-debuginfo-0:0.6.22-1.el7.i686", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-1.el7?arch=i686", }, }, }, { category: "product_version", name: "libexif-devel-0:0.6.22-1.el7.i686", product: { name: "libexif-devel-0:0.6.22-1.el7.i686", product_id: "libexif-devel-0:0.6.22-1.el7.i686", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-1.el7?arch=i686", }, }, }, ], category: "architecture", name: "i686", }, { branches: [ { category: "product_version", name: "libexif-0:0.6.22-1.el7.x86_64", product: { name: "libexif-0:0.6.22-1.el7.x86_64", product_id: "libexif-0:0.6.22-1.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-1.el7?arch=x86_64", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-1.el7.x86_64", product: { name: "libexif-debuginfo-0:0.6.22-1.el7.x86_64", product_id: "libexif-debuginfo-0:0.6.22-1.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-1.el7?arch=x86_64", }, }, }, { category: "product_version", name: "libexif-devel-0:0.6.22-1.el7.x86_64", product: { name: "libexif-devel-0:0.6.22-1.el7.x86_64", product_id: "libexif-devel-0:0.6.22-1.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-1.el7?arch=x86_64", }, }, }, { category: "product_version", name: "libexif-doc-0:0.6.22-1.el7.x86_64", product: { name: "libexif-doc-0:0.6.22-1.el7.x86_64", product_id: "libexif-doc-0:0.6.22-1.el7.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-doc@0.6.22-1.el7?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "libexif-0:0.6.22-1.el7.src", product: { name: "libexif-0:0.6.22-1.el7.src", product_id: "libexif-0:0.6.22-1.el7.src", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-1.el7?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "libexif-0:0.6.22-1.el7.s390x", product: { name: "libexif-0:0.6.22-1.el7.s390x", product_id: "libexif-0:0.6.22-1.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-1.el7?arch=s390x", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-1.el7.s390x", product: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390x", product_id: "libexif-debuginfo-0:0.6.22-1.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-1.el7?arch=s390x", }, }, }, { category: "product_version", name: "libexif-devel-0:0.6.22-1.el7.s390x", product: { name: "libexif-devel-0:0.6.22-1.el7.s390x", product_id: "libexif-devel-0:0.6.22-1.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-1.el7?arch=s390x", }, }, }, { category: "product_version", name: "libexif-doc-0:0.6.22-1.el7.s390x", product: { name: "libexif-doc-0:0.6.22-1.el7.s390x", product_id: "libexif-doc-0:0.6.22-1.el7.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-doc@0.6.22-1.el7?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "libexif-0:0.6.22-1.el7.s390", product: { name: "libexif-0:0.6.22-1.el7.s390", product_id: "libexif-0:0.6.22-1.el7.s390", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-1.el7?arch=s390", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-1.el7.s390", product: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390", product_id: "libexif-debuginfo-0:0.6.22-1.el7.s390", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-1.el7?arch=s390", }, }, }, { category: "product_version", name: "libexif-devel-0:0.6.22-1.el7.s390", product: { name: "libexif-devel-0:0.6.22-1.el7.s390", product_id: "libexif-devel-0:0.6.22-1.el7.s390", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-1.el7?arch=s390", }, }, }, ], category: "architecture", name: "s390", }, { branches: [ { category: "product_version", name: "libexif-0:0.6.22-1.el7.ppc64", product: { name: "libexif-0:0.6.22-1.el7.ppc64", product_id: "libexif-0:0.6.22-1.el7.ppc64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-1.el7?arch=ppc64", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64", product: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64", product_id: "libexif-debuginfo-0:0.6.22-1.el7.ppc64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-1.el7?arch=ppc64", }, }, }, { category: "product_version", name: "libexif-devel-0:0.6.22-1.el7.ppc64", product: { name: "libexif-devel-0:0.6.22-1.el7.ppc64", product_id: "libexif-devel-0:0.6.22-1.el7.ppc64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-1.el7?arch=ppc64", }, }, }, { category: "product_version", name: "libexif-doc-0:0.6.22-1.el7.ppc64", product: { name: "libexif-doc-0:0.6.22-1.el7.ppc64", product_id: "libexif-doc-0:0.6.22-1.el7.ppc64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-doc@0.6.22-1.el7?arch=ppc64", }, }, }, ], category: "architecture", name: "ppc64", }, { branches: [ { category: "product_version", name: "libexif-0:0.6.22-1.el7.ppc", product: { name: "libexif-0:0.6.22-1.el7.ppc", product_id: "libexif-0:0.6.22-1.el7.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-1.el7?arch=ppc", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-1.el7.ppc", product: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc", product_id: "libexif-debuginfo-0:0.6.22-1.el7.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-1.el7?arch=ppc", }, }, }, { category: "product_version", name: "libexif-devel-0:0.6.22-1.el7.ppc", product: { name: "libexif-devel-0:0.6.22-1.el7.ppc", product_id: "libexif-devel-0:0.6.22-1.el7.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-1.el7?arch=ppc", }, }, }, ], category: "architecture", name: "ppc", }, { branches: [ { category: "product_version", name: "libexif-0:0.6.22-1.el7.ppc64le", product: { name: "libexif-0:0.6.22-1.el7.ppc64le", product_id: "libexif-0:0.6.22-1.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-1.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", product: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", product_id: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-1.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "libexif-devel-0:0.6.22-1.el7.ppc64le", product: { name: "libexif-devel-0:0.6.22-1.el7.ppc64le", product_id: "libexif-devel-0:0.6.22-1.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-1.el7?arch=ppc64le", }, }, }, { category: "product_version", name: "libexif-doc-0:0.6.22-1.el7.ppc64le", product: { name: "libexif-doc-0:0.6.22-1.el7.ppc64le", product_id: "libexif-doc-0:0.6.22-1.el7.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-doc@0.6.22-1.el7?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-0:0.6.22-1.el7.i686", }, product_reference: "libexif-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-0:0.6.22-1.el7.s390", }, product_reference: "libexif-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.src as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-0:0.6.22-1.el7.src", }, product_reference: "libexif-0:0.6.22-1.el7.src", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", }, product_reference: "libexif-devel-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-doc-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Client-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", }, product_reference: "libexif-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", }, product_reference: "libexif-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.src as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", }, product_reference: "libexif-0:0.6.22-1.el7.src", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", }, product_reference: "libexif-devel-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-doc-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Client-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", }, product_reference: "libexif-0:0.6.22-1.el7.i686", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", }, product_reference: "libexif-0:0.6.22-1.el7.s390", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.src as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", }, product_reference: "libexif-0:0.6.22-1.el7.src", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.i686", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", }, product_reference: "libexif-devel-0:0.6.22-1.el7.i686", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-doc-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7ComputeNode-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-0:0.6.22-1.el7.i686", }, product_reference: "libexif-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-0:0.6.22-1.el7.s390", }, product_reference: "libexif-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.src as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-0:0.6.22-1.el7.src", }, product_reference: "libexif-0:0.6.22-1.el7.src", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", }, product_reference: "libexif-devel-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-doc-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Server-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", }, product_reference: "libexif-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", }, product_reference: "libexif-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.src as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", }, product_reference: "libexif-0:0.6.22-1.el7.src", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", }, product_reference: "libexif-devel-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-doc-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Server-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", }, product_reference: "libexif-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", }, product_reference: "libexif-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.src as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", }, product_reference: "libexif-0:0.6.22-1.el7.src", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", }, product_reference: "libexif-devel-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-doc-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Workstation-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", }, product_reference: "libexif-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", }, product_reference: "libexif-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", }, product_reference: "libexif-0:0.6.22-1.el7.src", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-debuginfo-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", }, product_reference: "libexif-devel-0:0.6.22-1.el7.i686", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-devel-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-devel-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-devel-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", }, product_reference: "libexif-doc-0:0.6.22-1.el7.ppc64le", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", }, product_reference: "libexif-doc-0:0.6.22-1.el7.s390x", relates_to_product_reference: "7Workstation-optional-7.9", }, { category: "default_component_of", full_product_name: { name: "libexif-doc-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", }, product_reference: "libexif-doc-0:0.6.22-1.el7.x86_64", relates_to_product_reference: "7Workstation-optional-7.9", }, ], }, vulnerabilities: [ { cve: "CVE-2019-9278", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, discovery_date: "2019-12-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789031", }, ], notes: [ { category: "description", text: "In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media content provider with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112537774", title: "Vulnerability description", }, { category: "summary", text: "libexif: out of bounds write in exif-data.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9278", }, { category: "external", summary: "RHBZ#1789031", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789031", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9278", url: "https://www.cve.org/CVERecord?id=CVE-2019-9278", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9278", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9278", }, ], release_date: "2019-12-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-09-29T20:17:18+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4040", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "libexif: out of bounds write in exif-data.c", }, { cve: "CVE-2020-0093", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2020-05-14T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1852487", }, ], notes: [ { category: "description", text: "In exif_data_save_data_entry of exif-data.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-148705132", title: "Vulnerability description", }, { category: "summary", text: "libexif: out of bounds read due to a missing bounds check in exif_data_save_data_entry function in exif-data.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-0093", }, { category: "external", summary: "RHBZ#1852487", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852487", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-0093", url: "https://www.cve.org/CVERecord?id=CVE-2020-0093", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-0093", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-0093", }, ], release_date: "2020-05-04T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-09-29T20:17:18+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4040", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "libexif: out of bounds read due to a missing bounds check in exif_data_save_data_entry function in exif-data.c", }, { cve: "CVE-2020-0182", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2020-06-11T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1852490", }, ], notes: [ { category: "description", text: "In exif_entry_get_value of exif-entry.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-147140917", title: "Vulnerability description", }, { category: "summary", text: "libexif: out of bounds read due to a missing bounds check in exif_entry_get_value function in exif-entry.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-0182", }, { category: "external", summary: "RHBZ#1852490", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852490", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-0182", url: "https://www.cve.org/CVERecord?id=CVE-2020-0182", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-0182", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-0182", }, ], release_date: "2020-06-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-09-29T20:17:18+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4040", }, { category: "workaround", details: "This flaw could be mitigated by not passing untrusted input to libexif.", product_ids: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L", version: "3.1", }, products: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "libexif: out of bounds read due to a missing bounds check in exif_entry_get_value function in exif-entry.c", }, { cve: "CVE-2020-12767", cwe: { id: "CWE-369", name: "Divide By Zero", }, discovery_date: "2020-05-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1834950", }, ], notes: [ { category: "description", text: "exif_entry_get_value in exif-entry.c in libexif 0.6.21 has a divide-by-zero error.", title: "Vulnerability description", }, { category: "summary", text: "libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-12767", }, { category: "external", summary: "RHBZ#1834950", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1834950", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-12767", url: "https://www.cve.org/CVERecord?id=CVE-2020-12767", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-12767", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-12767", }, ], release_date: "2020-02-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-09-29T20:17:18+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4040", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 6.2, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c", }, { cve: "CVE-2020-13113", cwe: { id: "CWE-822", name: "Untrusted Pointer Dereference", }, discovery_date: "2020-05-21T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1840347", }, ], notes: [ { category: "description", text: "An issue was discovered in libexif before 0.6.22. Use of uninitialized memory in EXIF Makernote handling could lead to crashes and potential use-after-free conditions.", title: "Vulnerability description", }, { category: "summary", text: "libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and use-after-free", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-13113", }, { category: "external", summary: "RHBZ#1840347", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1840347", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-13113", url: "https://www.cve.org/CVERecord?id=CVE-2020-13113", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-13113", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-13113", }, ], release_date: "2020-05-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-09-29T20:17:18+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4040", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.2, baseSeverity: "HIGH", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H", version: "3.1", }, products: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and use-after-free", }, { cve: "CVE-2020-13114", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2020-05-21T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1840350", }, ], notes: [ { category: "description", text: "An issue was discovered in libexif before 0.6.22. An unrestricted size in handling Canon EXIF MakerNote data could lead to consumption of large amounts of compute time for decoding EXIF data.", title: "Vulnerability description", }, { category: "summary", text: "libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-13114", }, { category: "external", summary: "RHBZ#1840350", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1840350", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-13114", url: "https://www.cve.org/CVERecord?id=CVE-2020-13114", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-13114", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-13114", }, ], release_date: "2020-05-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-09-29T20:17:18+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4040", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time", }, ], }
RHSA-2020:4766
Vulnerability from csaf_redhat
Published
2020-11-04 01:48
Modified
2024-11-22 15:19
Summary
Red Hat Security Advisory: libexif security, bug fix, and enhancement update
Notes
Topic
An update for libexif is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The libexif packages provide a library for extracting extra information from image files.
The following packages have been upgraded to a later upstream version: libexif (0.6.22). (BZ#1841320)
Security Fix(es):
* libexif: out of bounds write in exif-data.c (CVE-2019-9278)
* libexif: out of bounds read due to a missing bounds check in exif_data_save_data_entry function in exif-data.c (CVE-2020-0093)
* libexif: integer overflow in exif_data_load_data_thumbnail function in exif-data.c (CVE-2020-0181)
* libexif: integer overflow in exif_data_load_data_content function in exif-data.c (CVE-2020-0198)
* libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and use-after-free (CVE-2020-13113)
* libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time (CVE-2020-13114)
* libexif: out of bounds read due to a missing bounds check in exif_entry_get_value function in exif-entry.c (CVE-2020-0182)
* libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c (CVE-2020-12767)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.3 Release Notes linked from the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for libexif is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The libexif packages provide a library for extracting extra information from image files.\n\nThe following packages have been upgraded to a later upstream version: libexif (0.6.22). (BZ#1841320)\n\nSecurity Fix(es):\n\n* libexif: out of bounds write in exif-data.c (CVE-2019-9278)\n\n* libexif: out of bounds read due to a missing bounds check in exif_data_save_data_entry function in exif-data.c (CVE-2020-0093)\n\n* libexif: integer overflow in exif_data_load_data_thumbnail function in exif-data.c (CVE-2020-0181)\n\n* libexif: integer overflow in exif_data_load_data_content function in exif-data.c (CVE-2020-0198)\n\n* libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and use-after-free (CVE-2020-13113)\n\n* libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time (CVE-2020-13114)\n\n* libexif: out of bounds read due to a missing bounds check in exif_entry_get_value function in exif-entry.c (CVE-2020-0182)\n\n* libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c (CVE-2020-12767)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 8.3 Release Notes linked from the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2020:4766", url: "https://access.redhat.com/errata/RHSA-2020:4766", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.3_release_notes/", url: "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.3_release_notes/", }, { category: "external", summary: "1789031", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789031", }, { category: "external", summary: "1834950", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1834950", }, { category: "external", summary: "1840347", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1840347", }, { category: "external", summary: "1840350", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1840350", }, { category: "external", summary: "1841320", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1841320", }, { category: "external", summary: "1847131", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1847131", }, { category: "external", summary: "1847133", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1847133", }, { category: "external", summary: "1852487", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852487", }, { category: "external", summary: "1852490", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852490", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_4766.json", }, ], title: "Red Hat Security Advisory: libexif security, bug fix, and enhancement update", tracking: { current_release_date: "2024-11-22T15:19:25+00:00", generator: { date: "2024-11-22T15:19:25+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2020:4766", initial_release_date: "2020-11-04T01:48:17+00:00", revision_history: [ { date: "2020-11-04T01:48:17+00:00", number: "1", summary: "Initial version", }, { date: "2020-11-04T01:48:17+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T15:19:25+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 8)", product: { name: "Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::appstream", }, }, }, { category: "product_name", name: "Red Hat CodeReady Linux Builder (v. 8)", product: { name: "Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "libexif-devel-0:0.6.22-4.el8.i686", product: { name: "libexif-devel-0:0.6.22-4.el8.i686", product_id: "libexif-devel-0:0.6.22-4.el8.i686", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-4.el8?arch=i686", }, }, }, { category: "product_version", name: "libexif-debugsource-0:0.6.22-4.el8.i686", product: { name: "libexif-debugsource-0:0.6.22-4.el8.i686", product_id: "libexif-debugsource-0:0.6.22-4.el8.i686", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debugsource@0.6.22-4.el8?arch=i686", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-4.el8.i686", product: { name: "libexif-debuginfo-0:0.6.22-4.el8.i686", product_id: "libexif-debuginfo-0:0.6.22-4.el8.i686", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-4.el8?arch=i686", }, }, }, { category: "product_version", name: "libexif-0:0.6.22-4.el8.i686", product: { name: "libexif-0:0.6.22-4.el8.i686", product_id: "libexif-0:0.6.22-4.el8.i686", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-4.el8?arch=i686", }, }, }, ], category: "architecture", name: "i686", }, { branches: [ { category: "product_version", name: "libexif-devel-0:0.6.22-4.el8.x86_64", product: { name: "libexif-devel-0:0.6.22-4.el8.x86_64", product_id: "libexif-devel-0:0.6.22-4.el8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-4.el8?arch=x86_64", }, }, }, { category: "product_version", name: "libexif-debugsource-0:0.6.22-4.el8.x86_64", product: { name: "libexif-debugsource-0:0.6.22-4.el8.x86_64", product_id: "libexif-debugsource-0:0.6.22-4.el8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debugsource@0.6.22-4.el8?arch=x86_64", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-4.el8.x86_64", product: { name: "libexif-debuginfo-0:0.6.22-4.el8.x86_64", product_id: "libexif-debuginfo-0:0.6.22-4.el8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-4.el8?arch=x86_64", }, }, }, { category: "product_version", name: "libexif-0:0.6.22-4.el8.x86_64", product: { name: "libexif-0:0.6.22-4.el8.x86_64", product_id: "libexif-0:0.6.22-4.el8.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-4.el8?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "libexif-devel-0:0.6.22-4.el8.ppc64le", product: { name: "libexif-devel-0:0.6.22-4.el8.ppc64le", product_id: "libexif-devel-0:0.6.22-4.el8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-4.el8?arch=ppc64le", }, }, }, { category: "product_version", name: "libexif-debugsource-0:0.6.22-4.el8.ppc64le", product: { name: "libexif-debugsource-0:0.6.22-4.el8.ppc64le", product_id: "libexif-debugsource-0:0.6.22-4.el8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debugsource@0.6.22-4.el8?arch=ppc64le", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-4.el8.ppc64le", product: { name: "libexif-debuginfo-0:0.6.22-4.el8.ppc64le", product_id: "libexif-debuginfo-0:0.6.22-4.el8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-4.el8?arch=ppc64le", }, }, }, { category: "product_version", name: "libexif-0:0.6.22-4.el8.ppc64le", product: { name: "libexif-0:0.6.22-4.el8.ppc64le", product_id: "libexif-0:0.6.22-4.el8.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-4.el8?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "libexif-devel-0:0.6.22-4.el8.s390x", product: { name: "libexif-devel-0:0.6.22-4.el8.s390x", product_id: "libexif-devel-0:0.6.22-4.el8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-4.el8?arch=s390x", }, }, }, { category: "product_version", name: "libexif-debugsource-0:0.6.22-4.el8.s390x", product: { name: "libexif-debugsource-0:0.6.22-4.el8.s390x", product_id: "libexif-debugsource-0:0.6.22-4.el8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debugsource@0.6.22-4.el8?arch=s390x", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-4.el8.s390x", product: { name: "libexif-debuginfo-0:0.6.22-4.el8.s390x", product_id: "libexif-debuginfo-0:0.6.22-4.el8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-4.el8?arch=s390x", }, }, }, { category: "product_version", name: "libexif-0:0.6.22-4.el8.s390x", product: { name: "libexif-0:0.6.22-4.el8.s390x", product_id: "libexif-0:0.6.22-4.el8.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-4.el8?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "libexif-devel-0:0.6.22-4.el8.aarch64", product: { name: "libexif-devel-0:0.6.22-4.el8.aarch64", product_id: "libexif-devel-0:0.6.22-4.el8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-devel@0.6.22-4.el8?arch=aarch64", }, }, }, { category: "product_version", name: "libexif-debugsource-0:0.6.22-4.el8.aarch64", product: { name: "libexif-debugsource-0:0.6.22-4.el8.aarch64", product_id: "libexif-debugsource-0:0.6.22-4.el8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debugsource@0.6.22-4.el8?arch=aarch64", }, }, }, { category: "product_version", name: "libexif-debuginfo-0:0.6.22-4.el8.aarch64", product: { name: "libexif-debuginfo-0:0.6.22-4.el8.aarch64", product_id: "libexif-debuginfo-0:0.6.22-4.el8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif-debuginfo@0.6.22-4.el8?arch=aarch64", }, }, }, { category: "product_version", name: "libexif-0:0.6.22-4.el8.aarch64", product: { name: "libexif-0:0.6.22-4.el8.aarch64", product_id: "libexif-0:0.6.22-4.el8.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-4.el8?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "libexif-0:0.6.22-4.el8.src", product: { name: "libexif-0:0.6.22-4.el8.src", product_id: "libexif-0:0.6.22-4.el8.src", product_identification_helper: { purl: "pkg:rpm/redhat/libexif@0.6.22-4.el8?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", }, product_reference: "libexif-0:0.6.22-4.el8.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", }, product_reference: "libexif-0:0.6.22-4.el8.i686", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", }, product_reference: "libexif-0:0.6.22-4.el8.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", }, product_reference: "libexif-0:0.6.22-4.el8.s390x", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.src as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", }, product_reference: "libexif-0:0.6.22-4.el8.src", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", }, product_reference: "libexif-0:0.6.22-4.el8.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-4.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", }, product_reference: "libexif-debuginfo-0:0.6.22-4.el8.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-4.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", }, product_reference: "libexif-debuginfo-0:0.6.22-4.el8.i686", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-4.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", }, product_reference: "libexif-debuginfo-0:0.6.22-4.el8.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-4.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", }, product_reference: "libexif-debuginfo-0:0.6.22-4.el8.s390x", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-4.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", }, product_reference: "libexif-debuginfo-0:0.6.22-4.el8.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debugsource-0:0.6.22-4.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", }, product_reference: "libexif-debugsource-0:0.6.22-4.el8.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debugsource-0:0.6.22-4.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", }, product_reference: "libexif-debugsource-0:0.6.22-4.el8.i686", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debugsource-0:0.6.22-4.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", }, product_reference: "libexif-debugsource-0:0.6.22-4.el8.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debugsource-0:0.6.22-4.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", }, product_reference: "libexif-debugsource-0:0.6.22-4.el8.s390x", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debugsource-0:0.6.22-4.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", }, product_reference: "libexif-debugsource-0:0.6.22-4.el8.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-4.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", }, product_reference: "libexif-devel-0:0.6.22-4.el8.aarch64", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-4.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", }, product_reference: "libexif-devel-0:0.6.22-4.el8.i686", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-4.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", }, product_reference: "libexif-devel-0:0.6.22-4.el8.ppc64le", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-4.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", }, product_reference: "libexif-devel-0:0.6.22-4.el8.s390x", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-4.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", }, product_reference: "libexif-devel-0:0.6.22-4.el8.x86_64", relates_to_product_reference: "AppStream-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", }, product_reference: "libexif-0:0.6.22-4.el8.aarch64", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", }, product_reference: "libexif-0:0.6.22-4.el8.i686", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", }, product_reference: "libexif-0:0.6.22-4.el8.ppc64le", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", }, product_reference: "libexif-0:0.6.22-4.el8.s390x", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.src as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", }, product_reference: "libexif-0:0.6.22-4.el8.src", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-0:0.6.22-4.el8.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", }, product_reference: "libexif-0:0.6.22-4.el8.x86_64", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-4.el8.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", }, product_reference: "libexif-debuginfo-0:0.6.22-4.el8.aarch64", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-4.el8.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", }, product_reference: "libexif-debuginfo-0:0.6.22-4.el8.i686", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-4.el8.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", }, product_reference: "libexif-debuginfo-0:0.6.22-4.el8.ppc64le", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-4.el8.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", }, product_reference: "libexif-debuginfo-0:0.6.22-4.el8.s390x", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debuginfo-0:0.6.22-4.el8.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", }, product_reference: "libexif-debuginfo-0:0.6.22-4.el8.x86_64", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debugsource-0:0.6.22-4.el8.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", }, product_reference: "libexif-debugsource-0:0.6.22-4.el8.aarch64", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debugsource-0:0.6.22-4.el8.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", }, product_reference: "libexif-debugsource-0:0.6.22-4.el8.i686", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debugsource-0:0.6.22-4.el8.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", }, product_reference: "libexif-debugsource-0:0.6.22-4.el8.ppc64le", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debugsource-0:0.6.22-4.el8.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", }, product_reference: "libexif-debugsource-0:0.6.22-4.el8.s390x", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-debugsource-0:0.6.22-4.el8.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", }, product_reference: "libexif-debugsource-0:0.6.22-4.el8.x86_64", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-4.el8.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", }, product_reference: "libexif-devel-0:0.6.22-4.el8.aarch64", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-4.el8.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", }, product_reference: "libexif-devel-0:0.6.22-4.el8.i686", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-4.el8.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", }, product_reference: "libexif-devel-0:0.6.22-4.el8.ppc64le", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-4.el8.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", }, product_reference: "libexif-devel-0:0.6.22-4.el8.s390x", relates_to_product_reference: "CRB-8.3.0.GA", }, { category: "default_component_of", full_product_name: { name: "libexif-devel-0:0.6.22-4.el8.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", }, product_reference: "libexif-devel-0:0.6.22-4.el8.x86_64", relates_to_product_reference: "CRB-8.3.0.GA", }, ], }, vulnerabilities: [ { cve: "CVE-2019-9278", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, discovery_date: "2019-12-02T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1789031", }, ], notes: [ { category: "description", text: "In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media content provider with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112537774", title: "Vulnerability description", }, { category: "summary", text: "libexif: out of bounds write in exif-data.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2019-9278", }, { category: "external", summary: "RHBZ#1789031", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1789031", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2019-9278", url: "https://www.cve.org/CVERecord?id=CVE-2019-9278", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2019-9278", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-9278", }, ], release_date: "2019-12-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:48:17+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4766", }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "libexif: out of bounds write in exif-data.c", }, { cve: "CVE-2020-0093", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2020-05-14T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1852487", }, ], notes: [ { category: "description", text: "In exif_data_save_data_entry of exif-data.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-148705132", title: "Vulnerability description", }, { category: "summary", text: "libexif: out of bounds read due to a missing bounds check in exif_data_save_data_entry function in exif-data.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-0093", }, { category: "external", summary: "RHBZ#1852487", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852487", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-0093", url: "https://www.cve.org/CVERecord?id=CVE-2020-0093", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-0093", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-0093", }, ], release_date: "2020-05-04T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:48:17+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4766", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "libexif: out of bounds read due to a missing bounds check in exif_data_save_data_entry function in exif-data.c", }, { cve: "CVE-2020-0181", cwe: { id: "CWE-787", name: "Out-of-bounds Write", }, discovery_date: "2020-06-06T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1847131", }, ], notes: [ { category: "description", text: "In exif_data_load_data_thumbnail of exif-data.c, there is a possible denial of service due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-145075076", title: "Vulnerability description", }, { category: "summary", text: "libexif: integer overflow in exif_data_load_data_thumbnail function in exif-data.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-0181", }, { category: "external", summary: "RHBZ#1847131", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1847131", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-0181", url: "https://www.cve.org/CVERecord?id=CVE-2020-0181", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-0181", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-0181", }, ], release_date: "2020-06-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:48:17+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4766", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.2, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H", version: "3.1", }, products: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "libexif: integer overflow in exif_data_load_data_thumbnail function in exif-data.c", }, { cve: "CVE-2020-0182", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2020-06-11T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1852490", }, ], notes: [ { category: "description", text: "In exif_entry_get_value of exif-entry.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-147140917", title: "Vulnerability description", }, { category: "summary", text: "libexif: out of bounds read due to a missing bounds check in exif_entry_get_value function in exif-entry.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-0182", }, { category: "external", summary: "RHBZ#1852490", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1852490", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-0182", url: "https://www.cve.org/CVERecord?id=CVE-2020-0182", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-0182", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-0182", }, ], release_date: "2020-06-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:48:17+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4766", }, { category: "workaround", details: "This flaw could be mitigated by not passing untrusted input to libexif.", product_ids: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L", version: "3.1", }, products: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "libexif: out of bounds read due to a missing bounds check in exif_entry_get_value function in exif-entry.c", }, { cve: "CVE-2020-0198", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2020-06-07T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1847133", }, ], notes: [ { category: "description", text: "In exif_data_load_data_content of exif-data.c, there is a possible UBSAN abort due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-146428941", title: "Vulnerability description", }, { category: "summary", text: "libexif: integer overflow in exif_data_load_data_content function in exif-data.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-0198", }, { category: "external", summary: "RHBZ#1847133", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1847133", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-0198", url: "https://www.cve.org/CVERecord?id=CVE-2020-0198", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-0198", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-0198", }, ], release_date: "2020-06-01T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:48:17+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4766", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "libexif: integer overflow in exif_data_load_data_content function in exif-data.c", }, { cve: "CVE-2020-12767", cwe: { id: "CWE-369", name: "Divide By Zero", }, discovery_date: "2020-05-09T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1834950", }, ], notes: [ { category: "description", text: "exif_entry_get_value in exif-entry.c in libexif 0.6.21 has a divide-by-zero error.", title: "Vulnerability description", }, { category: "summary", text: "libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-12767", }, { category: "external", summary: "RHBZ#1834950", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1834950", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-12767", url: "https://www.cve.org/CVERecord?id=CVE-2020-12767", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-12767", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-12767", }, ], release_date: "2020-02-17T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:48:17+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4766", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 6.2, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, ], threats: [ { category: "impact", details: "Low", }, ], title: "libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c", }, { cve: "CVE-2020-13113", cwe: { id: "CWE-822", name: "Untrusted Pointer Dereference", }, discovery_date: "2020-05-21T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1840347", }, ], notes: [ { category: "description", text: "An issue was discovered in libexif before 0.6.22. Use of uninitialized memory in EXIF Makernote handling could lead to crashes and potential use-after-free conditions.", title: "Vulnerability description", }, { category: "summary", text: "libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and use-after-free", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-13113", }, { category: "external", summary: "RHBZ#1840347", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1840347", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-13113", url: "https://www.cve.org/CVERecord?id=CVE-2020-13113", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-13113", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-13113", }, ], release_date: "2020-05-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:48:17+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4766", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.2, baseSeverity: "HIGH", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and use-after-free", }, { cve: "CVE-2020-13114", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2020-05-21T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1840350", }, ], notes: [ { category: "description", text: "An issue was discovered in libexif before 0.6.22. An unrestricted size in handling Canon EXIF MakerNote data could lead to consumption of large amounts of compute time for decoding EXIF data.", title: "Vulnerability description", }, { category: "summary", text: "libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2020-13114", }, { category: "external", summary: "RHBZ#1840350", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1840350", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2020-13114", url: "https://www.cve.org/CVERecord?id=CVE-2020-13114", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2020-13114", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-13114", }, ], release_date: "2020-05-16T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2020-11-04T01:48:17+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2020:4766", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time", }, ], }
ghsa-cr92-4pr9-789r
Vulnerability from github
Published
2022-05-24 17:17
Modified
2022-10-14 12:00
Severity ?
Details
In exif_data_save_data_entry of exif-data.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-148705132
{ affected: [], aliases: [ "CVE-2020-0093", ], database_specific: { cwe_ids: [ "CWE-125", ], github_reviewed: false, github_reviewed_at: null, nvd_published_at: "2020-05-14T21:15:00Z", severity: "LOW", }, details: "In exif_data_save_data_entry of exif-data.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-148705132", id: "GHSA-cr92-4pr9-789r", modified: "2022-10-14T12:00:20Z", published: "2022-05-24T17:17:51Z", references: [ { type: "ADVISORY", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-0093", }, { type: "WEB", url: "https://lists.debian.org/debian-lts-announce/2020/05/msg00016.html", }, { type: "WEB", url: "https://security.gentoo.org/glsa/202007-05", }, { type: "WEB", url: "https://source.android.com/security/bulletin/2020-05-01", }, { type: "WEB", url: "https://usn.ubuntu.com/4396-1", }, { type: "WEB", url: "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00017.html", }, ], schema_version: "1.4.0", severity: [ { score: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N", type: "CVSS_V3", }, ], }
fkie_cve-2020-0093
Vulnerability from fkie_nvd
Published
2020-05-14 21:15
Modified
2024-11-21 04:52
Severity ?
Summary
In exif_data_save_data_entry of exif-data.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-148705132
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| android | 8.0 | ||
| android | 8.1 | ||
| android | 9.0 | ||
| android | 10.0 | ||
| debian | debian_linux | 8.0 | |
| canonical | ubuntu_linux | 12.04 | |
| canonical | ubuntu_linux | 14.04 | |
| canonical | ubuntu_linux | 16.04 | |
| canonical | ubuntu_linux | 18.04 | |
| canonical | ubuntu_linux | 19.10 | |
| canonical | ubuntu_linux | 20.04 | |
| libexif_project | libexif | * | |
| opensuse | leap | 15.1 |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:google:android:8.0:*:*:*:*:*:*:*", matchCriteriaId: "B578E383-0D77-4AC7-9C81-3F0B8C18E033", vulnerable: true, }, { criteria: "cpe:2.3:o:google:android:8.1:*:*:*:*:*:*:*", matchCriteriaId: "B06BE74B-83F4-41A3-8AD3-2E6248F7B0B2", vulnerable: true, }, { criteria: "cpe:2.3:o:google:android:9.0:*:*:*:*:*:*:*", matchCriteriaId: "8DFAAD08-36DA-4C95-8200-C29FE5B6B854", vulnerable: true, }, { criteria: "cpe:2.3:o:google:android:10.0:*:*:*:*:*:*:*", matchCriteriaId: "D558D965-FA70-4822-A770-419E73BA9ED3", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", matchCriteriaId: "C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:*:*:*:*", matchCriteriaId: "1F3EFED2-F6BC-46D9-AB22-D5ED87EF4549", vulnerable: true, }, { criteria: "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*", matchCriteriaId: "815D70A8-47D3-459C-A32C-9FEACA0659D1", vulnerable: true, }, { criteria: "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*", matchCriteriaId: "7A5301BF-1402-4BE0-A0F8-69FBE79BC6D6", vulnerable: true, }, { criteria: "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", matchCriteriaId: "23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D", vulnerable: true, }, { criteria: "cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*", matchCriteriaId: "A31C8344-3E02-4EB8-8BD8-4C84B7959624", vulnerable: true, }, { criteria: "cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*", matchCriteriaId: "902B8056-9E37-443B-8905-8AA93E2447FB", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:libexif_project:libexif:*:*:*:*:*:*:*:*", matchCriteriaId: "C81CD57C-F020-46D6-859A-A9E81EF9685B", versionEndExcluding: "0.6.22", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*", matchCriteriaId: "B620311B-34A3-48A6-82DF-6F078D7A4493", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "In exif_data_save_data_entry of exif-data.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-148705132", }, { lang: "es", value: "En la función exif_data_save_data_entry del archivo exif-data.c, se presenta una posible lectura fuera de límites debido a una falta de comprobación de límites. Esto podría conllevar a una divulgación de información local sin ser necesarios privilegios de ejecución adicionales. Es requerida una interacción del usuario para su explotación. Producto: Android, Versiones: Android-8.0 Android-8.1 Android-9 Android-10, ID de Android: A-148705132", }, ], id: "CVE-2020-0093", lastModified: "2024-11-21T04:52:53.650", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "LOW", cvssData: { accessComplexity: "MEDIUM", accessVector: "LOCAL", authentication: "NONE", availabilityImpact: "NONE", baseScore: 1.9, confidentialityImpact: "PARTIAL", integrityImpact: "NONE", vectorString: "AV:L/AC:M/Au:N/C:P/I:N/A:N", version: "2.0", }, exploitabilityScore: 3.4, impactScore: 2.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: true, }, ], cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, exploitabilityScore: 1.3, impactScore: 3.6, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2020-05-14T21:15:11.883", references: [ { source: "security@android.com", tags: [ "Mailing List", "Third Party Advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00017.html", }, { source: "security@android.com", tags: [ "Mailing List", "Third Party Advisory", ], url: "https://lists.debian.org/debian-lts-announce/2020/05/msg00016.html", }, { source: "security@android.com", tags: [ "Patch", "Third Party Advisory", ], url: "https://security.gentoo.org/glsa/202007-05", }, { source: "security@android.com", tags: [ "Patch", "Vendor Advisory", ], url: "https://source.android.com/security/bulletin/2020-05-01", }, { source: "security@android.com", tags: [ "Third Party Advisory", ], url: "https://usn.ubuntu.com/4396-1/", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Mailing List", "Third Party Advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00017.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Mailing List", "Third Party Advisory", ], url: "https://lists.debian.org/debian-lts-announce/2020/05/msg00016.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Third Party Advisory", ], url: "https://security.gentoo.org/glsa/202007-05", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Vendor Advisory", ], url: "https://source.android.com/security/bulletin/2020-05-01", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "https://usn.ubuntu.com/4396-1/", }, ], sourceIdentifier: "security@android.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-125", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
gsd-2020-0093
Vulnerability from gsd
Modified
2023-12-13 01:21
Details
In exif_data_save_data_entry of exif-data.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-148705132
Aliases
Aliases
{ GSD: { alias: "CVE-2020-0093", description: "In exif_data_save_data_entry of exif-data.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-148705132", id: "GSD-2020-0093", references: [ "https://www.suse.com/security/cve/CVE-2020-0093.html", "https://access.redhat.com/errata/RHSA-2020:4766", "https://access.redhat.com/errata/RHSA-2020:4040", "https://ubuntu.com/security/CVE-2020-0093", "https://advisories.mageia.org/CVE-2020-0093.html", "https://security.archlinux.org/CVE-2020-0093", "https://linux.oracle.com/cve/CVE-2020-0093.html", ], }, gsd: { metadata: { exploitCode: "unknown", remediation: "unknown", reportConfidence: "confirmed", type: "vulnerability", }, osvSchema: { aliases: [ "CVE-2020-0093", ], details: "In exif_data_save_data_entry of exif-data.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-148705132", id: "GSD-2020-0093", modified: "2023-12-13T01:21:44.609007Z", schema_version: "1.4.0", }, }, namespaces: { "cve.org": { CVE_data_meta: { ASSIGNER: "security@android.com", ID: "CVE-2020-0093", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Android", version: { version_data: [ { version_value: "Android-8.0 Android-8.1 Android-9 Android-10", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "In exif_data_save_data_entry of exif-data.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-148705132", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "Information disclosure", }, ], }, ], }, references: { reference_data: [ { name: "https://source.android.com/security/bulletin/2020-05-01", refsource: "MISC", url: "https://source.android.com/security/bulletin/2020-05-01", }, { name: "[debian-lts-announce] 20200518 [SECURITY] [DLA 2214-1] libexif security update", refsource: "MLIST", url: "https://lists.debian.org/debian-lts-announce/2020/05/msg00016.html", }, { name: "openSUSE-SU-2020:0793", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00017.html", }, { name: "USN-4396-1", refsource: "UBUNTU", url: "https://usn.ubuntu.com/4396-1/", }, { name: "GLSA-202007-05", refsource: "GENTOO", url: "https://security.gentoo.org/glsa/202007-05", }, ], }, }, "nvd.nist.gov": { configurations: { CVE_data_version: "4.0", nodes: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:google:android:8.0:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:google:android:8.1:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:google:android:9.0:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:google:android:10.0:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:libexif_project:libexif:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "0.6.22", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, ], }, cve: { CVE_data_meta: { ASSIGNER: "security@android.com", ID: "CVE-2020-0093", }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "en", value: "In exif_data_save_data_entry of exif-data.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-148705132", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "en", value: "CWE-125", }, ], }, ], }, references: { reference_data: [ { name: "https://source.android.com/security/bulletin/2020-05-01", refsource: "MISC", tags: [ "Patch", "Vendor Advisory", ], url: "https://source.android.com/security/bulletin/2020-05-01", }, { name: "[debian-lts-announce] 20200518 [SECURITY] [DLA 2214-1] libexif security update", refsource: "MLIST", tags: [ "Mailing List", "Third Party Advisory", ], url: "https://lists.debian.org/debian-lts-announce/2020/05/msg00016.html", }, { name: "openSUSE-SU-2020:0793", refsource: "SUSE", tags: [ "Mailing List", "Third Party Advisory", ], url: "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00017.html", }, { name: "USN-4396-1", refsource: "UBUNTU", tags: [ "Third Party Advisory", ], url: "https://usn.ubuntu.com/4396-1/", }, { name: "GLSA-202007-05", refsource: "GENTOO", tags: [ "Patch", "Third Party Advisory", ], url: "https://security.gentoo.org/glsa/202007-05", }, ], }, }, impact: { baseMetricV2: { acInsufInfo: false, cvssV2: { accessComplexity: "MEDIUM", accessVector: "LOCAL", authentication: "NONE", availabilityImpact: "NONE", baseScore: 1.9, confidentialityImpact: "PARTIAL", integrityImpact: "NONE", vectorString: "AV:L/AC:M/Au:N/C:P/I:N/A:N", version: "2.0", }, exploitabilityScore: 3.4, impactScore: 2.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, severity: "LOW", userInteractionRequired: true, }, baseMetricV3: { cvssV3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, exploitabilityScore: 1.3, impactScore: 3.6, }, }, lastModifiedDate: "2022-10-14T02:40Z", publishedDate: "2020-05-14T21:15Z", }, }, }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
UUIDv4 of the comment
UUIDv4 of the Vulnerability-Lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.