Action not permitted
Modal body text goes here.
Modal Title
Modal Body
cve-2019-9278
Vulnerability from cvelistv5
Published
2019-09-27 18:05
Modified
2024-08-04 21:46
Severity ?
EPSS score ?
Summary
In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media content provider with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112537774
References
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-04T21:46:29.867Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "tags": [ "x_refsource_MISC", "x_transferred" ], "url": "https://source.android.com/security/bulletin/android-10" }, { "name": "[oss-security] 20191025 Security fixes from Android 10 release which are relevant outside the Android ecosystem?", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "http://www.openwall.com/lists/oss-security/2019/10/25/17" }, { "name": "[oss-security] 20191026 Re: Security fixes from Android 10 release which are relevant outside the Android ecosystem?", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "http://www.openwall.com/lists/oss-security/2019/10/27/1" }, { "name": "[oss-security] 20191107 Re: Security fixes from Android 10 release which are relevant outside the Android ecosystem?", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "http://www.openwall.com/lists/oss-security/2019/11/07/1" }, { "name": "DSA-4618", "tags": [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred" ], "url": "https://www.debian.org/security/2020/dsa-4618" }, { "name": "[debian-lts-announce] 20200210 [SECURITY] [DLA 2100-1] libexif security update", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "https://lists.debian.org/debian-lts-announce/2020/02/msg00007.html" }, { "name": "20200210 [SECURITY] [DSA 4618-1] libexif security update", "tags": [ "mailing-list", "x_refsource_BUGTRAQ", "x_transferred" ], "url": "https://seclists.org/bugtraq/2020/Feb/9" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://github.com/libexif/libexif/issues/26" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://github.com/libexif/libexif/commit/75aa73267fdb1e0ebfbc00369e7312bac43d0566" }, { "name": "USN-4277-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred" ], "url": "https://usn.ubuntu.com/4277-1/" }, { "name": "openSUSE-SU-2020:0264", "tags": [ "vendor-advisory", "x_refsource_SUSE", "x_transferred" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00000.html" }, { "name": "openSUSE-SU-2020:0793", "tags": [ "vendor-advisory", "x_refsource_SUSE", "x_transferred" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00017.html" }, { "name": "FEDORA-2020-b4db792558", "tags": [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred" ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VA5BPQLOFXIZOOJHBYDU635Z5KLUMTDD/" }, { "name": "FEDORA-2020-085150ac6e", "tags": [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred" ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MO2VTHD7OLPJDCJBHKUQTBAHZOBBCF6X/" }, { "name": "GLSA-202007-05", "tags": [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred" ], "url": "https://security.gentoo.org/glsa/202007-05" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "Android", "vendor": "n/a", "versions": [ { "status": "affected", "version": "Android-10" } ] } ], "descriptions": [ { "lang": "en", "value": "In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media content provider with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112537774" } ], "problemTypes": [ { "descriptions": [ { "description": "Remote code execution", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2020-07-27T00:06:14", "orgId": "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", "shortName": "google_android" }, "references": [ { "tags": [ "x_refsource_MISC" ], "url": "https://source.android.com/security/bulletin/android-10" }, { "name": "[oss-security] 20191025 Security fixes from Android 10 release which are relevant outside the Android ecosystem?", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "http://www.openwall.com/lists/oss-security/2019/10/25/17" }, { "name": "[oss-security] 20191026 Re: Security fixes from Android 10 release which are relevant outside the Android ecosystem?", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "http://www.openwall.com/lists/oss-security/2019/10/27/1" }, { "name": "[oss-security] 20191107 Re: Security fixes from Android 10 release which are relevant outside the Android ecosystem?", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "http://www.openwall.com/lists/oss-security/2019/11/07/1" }, { "name": "DSA-4618", "tags": [ "vendor-advisory", "x_refsource_DEBIAN" ], "url": "https://www.debian.org/security/2020/dsa-4618" }, { "name": "[debian-lts-announce] 20200210 [SECURITY] [DLA 2100-1] libexif security update", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "https://lists.debian.org/debian-lts-announce/2020/02/msg00007.html" }, { "name": "20200210 [SECURITY] [DSA 4618-1] libexif security update", "tags": [ "mailing-list", "x_refsource_BUGTRAQ" ], "url": "https://seclists.org/bugtraq/2020/Feb/9" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://github.com/libexif/libexif/issues/26" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://github.com/libexif/libexif/commit/75aa73267fdb1e0ebfbc00369e7312bac43d0566" }, { "name": "USN-4277-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU" ], "url": "https://usn.ubuntu.com/4277-1/" }, { "name": "openSUSE-SU-2020:0264", "tags": [ "vendor-advisory", "x_refsource_SUSE" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00000.html" }, { "name": "openSUSE-SU-2020:0793", "tags": [ "vendor-advisory", "x_refsource_SUSE" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00017.html" }, { "name": "FEDORA-2020-b4db792558", "tags": [ "vendor-advisory", "x_refsource_FEDORA" ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VA5BPQLOFXIZOOJHBYDU635Z5KLUMTDD/" }, { "name": "FEDORA-2020-085150ac6e", "tags": [ "vendor-advisory", "x_refsource_FEDORA" ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MO2VTHD7OLPJDCJBHKUQTBAHZOBBCF6X/" }, { "name": "GLSA-202007-05", "tags": [ "vendor-advisory", "x_refsource_GENTOO" ], "url": "https://security.gentoo.org/glsa/202007-05" } ], "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "security@android.com", "ID": "CVE-2019-9278", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Android", "version": { "version_data": [ { "version_value": "Android-10" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media content provider with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112537774" } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "Remote code execution" } ] } ] }, "references": { "reference_data": [ { "name": "https://source.android.com/security/bulletin/android-10", "refsource": "MISC", "url": "https://source.android.com/security/bulletin/android-10" }, { "name": "[oss-security] 20191025 Security fixes from Android 10 release which are relevant outside the Android ecosystem?", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2019/10/25/17" }, { "name": "[oss-security] 20191026 Re: Security fixes from Android 10 release which are relevant outside the Android ecosystem?", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2019/10/27/1" }, { "name": "[oss-security] 20191107 Re: Security fixes from Android 10 release which are relevant outside the Android ecosystem?", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2019/11/07/1" }, { "name": "DSA-4618", "refsource": "DEBIAN", "url": "https://www.debian.org/security/2020/dsa-4618" }, { "name": "[debian-lts-announce] 20200210 [SECURITY] [DLA 2100-1] libexif security update", "refsource": "MLIST", "url": "https://lists.debian.org/debian-lts-announce/2020/02/msg00007.html" }, { "name": "20200210 [SECURITY] [DSA 4618-1] libexif security update", "refsource": "BUGTRAQ", "url": "https://seclists.org/bugtraq/2020/Feb/9" }, { "name": "https://github.com/libexif/libexif/issues/26", "refsource": "CONFIRM", "url": "https://github.com/libexif/libexif/issues/26" }, { "name": "https://github.com/libexif/libexif/commit/75aa73267fdb1e0ebfbc00369e7312bac43d0566", "refsource": "CONFIRM", "url": "https://github.com/libexif/libexif/commit/75aa73267fdb1e0ebfbc00369e7312bac43d0566" }, { "name": "USN-4277-1", "refsource": "UBUNTU", "url": "https://usn.ubuntu.com/4277-1/" }, { "name": "openSUSE-SU-2020:0264", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00000.html" }, { "name": "openSUSE-SU-2020:0793", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00017.html" }, { "name": "FEDORA-2020-b4db792558", "refsource": "FEDORA", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VA5BPQLOFXIZOOJHBYDU635Z5KLUMTDD/" }, { "name": "FEDORA-2020-085150ac6e", "refsource": "FEDORA", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MO2VTHD7OLPJDCJBHKUQTBAHZOBBCF6X/" }, { "name": "GLSA-202007-05", "refsource": "GENTOO", "url": "https://security.gentoo.org/glsa/202007-05" } ] } } } }, "cveMetadata": { "assignerOrgId": "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6", "assignerShortName": "google_android", "cveId": "CVE-2019-9278", "datePublished": "2019-09-27T18:05:14", "dateReserved": "2019-02-28T00:00:00", "dateUpdated": "2024-08-04T21:46:29.867Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1", "meta": { "nvd": "{\"cve\":{\"id\":\"CVE-2019-9278\",\"sourceIdentifier\":\"security@android.com\",\"published\":\"2019-09-27T19:15:19.060\",\"lastModified\":\"2024-11-21T04:51:20.630\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media content provider with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112537774\"},{\"lang\":\"es\",\"value\":\"En libexif, se presenta una posible escritura fuera de l\u00edmites debido a un desbordamiento de enteros. Esto podr\u00eda conllevar a una escalada de privilegios remota en el proveedor de contenido multimedia sin ser necesarios privilegios de ejecuci\u00f3n adicionales. Es requerida una interacci\u00f3n del usuario para su explotaci\u00f3n. Producto: Android, Versiones: Android-10, ID de Android: A-112537774\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\",\"baseScore\":8.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:P/I:P/A:P\",\"baseScore\":6.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-190\"},{\"lang\":\"en\",\"value\":\"CWE-787\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:google:android:10.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D558D965-FA70-4822-A770-419E73BA9ED3\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B620311B-34A3-48A6-82DF-6F078D7A4493\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"80F0FA5D-8D3B-4C0E-81E2-87998286AF33\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"36D96259-24BD-44E2-96D9-78CE1D41F956\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEECE5FC-CACF-4496-A3E7-164736409252\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1F3EFED2-F6BC-46D9-AB22-D5ED87EF4549\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*\",\"matchCriteriaId\":\"815D70A8-47D3-459C-A32C-9FEACA0659D1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*\",\"matchCriteriaId\":\"7A5301BF-1402-4BE0-A0F8-69FBE79BC6D6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A31C8344-3E02-4EB8-8BD8-4C84B7959624\"}]}]}],\"references\":[{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00000.html\",\"source\":\"security@android.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00017.html\",\"source\":\"security@android.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2019/10/25/17\",\"source\":\"security@android.com\",\"tags\":[\"Mailing List\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2019/10/27/1\",\"source\":\"security@android.com\",\"tags\":[\"Mailing List\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2019/11/07/1\",\"source\":\"security@android.com\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://github.com/libexif/libexif/commit/75aa73267fdb1e0ebfbc00369e7312bac43d0566\",\"source\":\"security@android.com\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/libexif/libexif/issues/26\",\"source\":\"security@android.com\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2020/02/msg00007.html\",\"source\":\"security@android.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MO2VTHD7OLPJDCJBHKUQTBAHZOBBCF6X/\",\"source\":\"security@android.com\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VA5BPQLOFXIZOOJHBYDU635Z5KLUMTDD/\",\"source\":\"security@android.com\"},{\"url\":\"https://seclists.org/bugtraq/2020/Feb/9\",\"source\":\"security@android.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202007-05\",\"source\":\"security@android.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://source.android.com/security/bulletin/android-10\",\"source\":\"security@android.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://usn.ubuntu.com/4277-1/\",\"source\":\"security@android.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2020/dsa-4618\",\"source\":\"security@android.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00000.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00017.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2019/10/25/17\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2019/10/27/1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2019/11/07/1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://github.com/libexif/libexif/commit/75aa73267fdb1e0ebfbc00369e7312bac43d0566\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/libexif/libexif/issues/26\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2020/02/msg00007.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MO2VTHD7OLPJDCJBHKUQTBAHZOBBCF6X/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VA5BPQLOFXIZOOJHBYDU635Z5KLUMTDD/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://seclists.org/bugtraq/2020/Feb/9\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202007-05\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://source.android.com/security/bulletin/android-10\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://usn.ubuntu.com/4277-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2020/dsa-4618\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}" } }
gsd-2019-9278
Vulnerability from gsd
Modified
2023-12-13 01:23
Details
In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media content provider with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112537774
Aliases
Aliases
{ "GSD": { "alias": "CVE-2019-9278", "description": "In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media content provider with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112537774", "id": "GSD-2019-9278", "references": [ "https://www.suse.com/security/cve/CVE-2019-9278.html", "https://www.debian.org/security/2020/dsa-4618", "https://access.redhat.com/errata/RHSA-2020:4766", "https://access.redhat.com/errata/RHSA-2020:4040", "https://ubuntu.com/security/CVE-2019-9278", "https://advisories.mageia.org/CVE-2019-9278.html", "https://security.archlinux.org/CVE-2019-9278", "https://linux.oracle.com/cve/CVE-2019-9278.html" ] }, "gsd": { "metadata": { "exploitCode": "unknown", "remediation": "unknown", "reportConfidence": "confirmed", "type": "vulnerability" }, "osvSchema": { "aliases": [ "CVE-2019-9278" ], "details": "In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media content provider with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112537774", "id": "GSD-2019-9278", "modified": "2023-12-13T01:23:47.606861Z", "schema_version": "1.4.0" } }, "namespaces": { "cve.org": { "CVE_data_meta": { "ASSIGNER": "security@android.com", "ID": "CVE-2019-9278", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Android", "version": { "version_data": [ { "version_value": "Android-10" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media content provider with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112537774" } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "Remote code execution" } ] } ] }, "references": { "reference_data": [ { "name": "https://source.android.com/security/bulletin/android-10", "refsource": "MISC", "url": "https://source.android.com/security/bulletin/android-10" }, { "name": "[oss-security] 20191025 Security fixes from Android 10 release which are relevant outside the Android ecosystem?", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2019/10/25/17" }, { "name": "[oss-security] 20191026 Re: Security fixes from Android 10 release which are relevant outside the Android ecosystem?", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2019/10/27/1" }, { "name": "[oss-security] 20191107 Re: Security fixes from Android 10 release which are relevant outside the Android ecosystem?", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2019/11/07/1" }, { "name": "DSA-4618", "refsource": "DEBIAN", "url": "https://www.debian.org/security/2020/dsa-4618" }, { "name": "[debian-lts-announce] 20200210 [SECURITY] [DLA 2100-1] libexif security update", "refsource": "MLIST", "url": "https://lists.debian.org/debian-lts-announce/2020/02/msg00007.html" }, { "name": "20200210 [SECURITY] [DSA 4618-1] libexif security update", "refsource": "BUGTRAQ", "url": "https://seclists.org/bugtraq/2020/Feb/9" }, { "name": "https://github.com/libexif/libexif/issues/26", "refsource": "CONFIRM", "url": "https://github.com/libexif/libexif/issues/26" }, { "name": "https://github.com/libexif/libexif/commit/75aa73267fdb1e0ebfbc00369e7312bac43d0566", "refsource": "CONFIRM", "url": "https://github.com/libexif/libexif/commit/75aa73267fdb1e0ebfbc00369e7312bac43d0566" }, { "name": "USN-4277-1", "refsource": "UBUNTU", "url": "https://usn.ubuntu.com/4277-1/" }, { "name": "openSUSE-SU-2020:0264", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00000.html" }, { "name": "openSUSE-SU-2020:0793", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00017.html" }, { "name": "FEDORA-2020-b4db792558", "refsource": "FEDORA", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VA5BPQLOFXIZOOJHBYDU635Z5KLUMTDD/" }, { "name": "FEDORA-2020-085150ac6e", "refsource": "FEDORA", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MO2VTHD7OLPJDCJBHKUQTBAHZOBBCF6X/" }, { "name": "GLSA-202007-05", "refsource": "GENTOO", "url": "https://security.gentoo.org/glsa/202007-05" } ] } }, "nvd.nist.gov": { "configurations": { "CVE_data_version": "4.0", "nodes": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:google:android:10.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" } ] }, "cve": { "CVE_data_meta": { "ASSIGNER": "security@android.com", "ID": "CVE-2019-9278" }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "en", "value": "In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media content provider with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112537774" } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "en", "value": "CWE-787" }, { "lang": "en", "value": "CWE-190" } ] } ] }, "references": { "reference_data": [ { "name": "https://source.android.com/security/bulletin/android-10", "refsource": "MISC", "tags": [ "Vendor Advisory" ], "url": "https://source.android.com/security/bulletin/android-10" }, { "name": "[oss-security] 20191025 Security fixes from Android 10 release which are relevant outside the Android ecosystem?", "refsource": "MLIST", "tags": [ "Mailing List" ], "url": "http://www.openwall.com/lists/oss-security/2019/10/25/17" }, { "name": "[oss-security] 20191026 Re: Security fixes from Android 10 release which are relevant outside the Android ecosystem?", "refsource": "MLIST", "tags": [ "Mailing List" ], "url": "http://www.openwall.com/lists/oss-security/2019/10/27/1" }, { "name": "[oss-security] 20191107 Re: Security fixes from Android 10 release which are relevant outside the Android ecosystem?", "refsource": "MLIST", "tags": [ "Mailing List" ], "url": "http://www.openwall.com/lists/oss-security/2019/11/07/1" }, { "name": "DSA-4618", "refsource": "DEBIAN", "tags": [ "Third Party Advisory" ], "url": "https://www.debian.org/security/2020/dsa-4618" }, { "name": "[debian-lts-announce] 20200210 [SECURITY] [DLA 2100-1] libexif security update", "refsource": "MLIST", "tags": [ "Mailing List", "Third Party Advisory" ], "url": "https://lists.debian.org/debian-lts-announce/2020/02/msg00007.html" }, { "name": "20200210 [SECURITY] [DSA 4618-1] libexif security update", "refsource": "BUGTRAQ", "tags": [ "Mailing List", "Third Party Advisory" ], "url": "https://seclists.org/bugtraq/2020/Feb/9" }, { "name": "https://github.com/libexif/libexif/commit/75aa73267fdb1e0ebfbc00369e7312bac43d0566", "refsource": "CONFIRM", "tags": [ "Patch", "Third Party Advisory" ], "url": "https://github.com/libexif/libexif/commit/75aa73267fdb1e0ebfbc00369e7312bac43d0566" }, { "name": "https://github.com/libexif/libexif/issues/26", "refsource": "CONFIRM", "tags": [ "Issue Tracking", "Patch", "Third Party Advisory" ], "url": "https://github.com/libexif/libexif/issues/26" }, { "name": "USN-4277-1", "refsource": "UBUNTU", "tags": [ "Third Party Advisory" ], "url": "https://usn.ubuntu.com/4277-1/" }, { "name": "openSUSE-SU-2020:0264", "refsource": "SUSE", "tags": [ "Mailing List", "Third Party Advisory" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00000.html" }, { "name": "openSUSE-SU-2020:0793", "refsource": "SUSE", "tags": [ "Mailing List", "Third Party Advisory" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00017.html" }, { "name": "FEDORA-2020-b4db792558", "refsource": "FEDORA", "tags": [ "Mailing List", "Third Party Advisory" ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VA5BPQLOFXIZOOJHBYDU635Z5KLUMTDD/" }, { "name": "FEDORA-2020-085150ac6e", "refsource": "FEDORA", "tags": [ "Mailing List", "Third Party Advisory" ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MO2VTHD7OLPJDCJBHKUQTBAHZOBBCF6X/" }, { "name": "GLSA-202007-05", "refsource": "GENTOO", "tags": [ "Third Party Advisory" ], "url": "https://security.gentoo.org/glsa/202007-05" } ] } }, "impact": { "baseMetricV2": { "acInsufInfo": false, "cvssV2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": true }, "baseMetricV3": { "cvssV3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "exploitabilityScore": 2.8, "impactScore": 5.9 } }, "lastModifiedDate": "2022-10-14T01:47Z", "publishedDate": "2019-09-27T19:15Z" } } }
rhsa-2020_4040
Vulnerability from csaf_redhat
Published
2020-09-29 20:17
Modified
2024-11-22 15:19
Summary
Red Hat Security Advisory: libexif security, bug fix, and enhancement update
Notes
Topic
An update for libexif is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The libexif packages provide a library for extracting extra information from image files.
The following packages have been upgraded to a later upstream version: libexif (0.6.22). (BZ#1841316)
Security Fix(es):
* libexif: out of bound write in exif-data.c (CVE-2019-9278)
* libexif: out of bounds read due to a missing bounds check in exif_data_save_data_entry function in exif-data.c (CVE-2020-0093)
* libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and use-after-free (CVE-2020-13113)
* libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time (CVE-2020-13114)
* libexif: out of bounds read due to a missing bounds check in exif_entry_get_value function in exif-entry.c (CVE-2020-0182)
* libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c (CVE-2020-12767)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.9 Release Notes linked from the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for libexif is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The libexif packages provide a library for extracting extra information from image files.\n\nThe following packages have been upgraded to a later upstream version: libexif (0.6.22). (BZ#1841316)\n\nSecurity Fix(es):\n\n* libexif: out of bound write in exif-data.c (CVE-2019-9278)\n\n* libexif: out of bounds read due to a missing bounds check in exif_data_save_data_entry function in exif-data.c (CVE-2020-0093)\n\n* libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and use-after-free (CVE-2020-13113)\n\n* libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time (CVE-2020-13114)\n\n* libexif: out of bounds read due to a missing bounds check in exif_entry_get_value function in exif-entry.c (CVE-2020-0182)\n\n* libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c (CVE-2020-12767)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 7.9 Release Notes linked from the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2020:4040", "url": "https://access.redhat.com/errata/RHSA-2020:4040" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.9_release_notes/index", "url": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.9_release_notes/index" }, { "category": "external", "summary": "1789031", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1789031" }, { "category": "external", "summary": "1834950", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1834950" }, { "category": "external", "summary": "1840347", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1840347" }, { "category": "external", "summary": "1840350", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1840350" }, { "category": "external", "summary": "1841316", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1841316" }, { "category": "external", "summary": "1852487", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852487" }, { "category": "external", "summary": "1852490", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852490" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_4040.json" } ], "title": "Red Hat Security Advisory: libexif security, bug fix, and enhancement update", "tracking": { "current_release_date": "2024-11-22T15:19:16+00:00", "generator": { "date": "2024-11-22T15:19:16+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2020:4040", "initial_release_date": "2020-09-29T20:17:18+00:00", "revision_history": [ { "date": "2020-09-29T20:17:18+00:00", "number": "1", "summary": "Initial version" }, { "date": "2020-09-29T20:17:18+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T15:19:16+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Client (v. 7)", "product": { "name": "Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Client Optional (v. 7)", "product": { "name": "Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product": { "name": "Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::computenode" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server (v. 7)", "product": { "name": "Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional (v. 7)", "product": { "name": "Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation (v. 7)", "product": { "name": "Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::workstation" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation Optional (v. 7)", "product": { "name": "Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::workstation" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "libexif-0:0.6.22-1.el7.i686", "product": { "name": "libexif-0:0.6.22-1.el7.i686", "product_id": "libexif-0:0.6.22-1.el7.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif@0.6.22-1.el7?arch=i686" } } }, { "category": "product_version", "name": "libexif-debuginfo-0:0.6.22-1.el7.i686", "product": { "name": "libexif-debuginfo-0:0.6.22-1.el7.i686", "product_id": "libexif-debuginfo-0:0.6.22-1.el7.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif-debuginfo@0.6.22-1.el7?arch=i686" } } }, { "category": "product_version", "name": "libexif-devel-0:0.6.22-1.el7.i686", "product": { "name": "libexif-devel-0:0.6.22-1.el7.i686", "product_id": "libexif-devel-0:0.6.22-1.el7.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif-devel@0.6.22-1.el7?arch=i686" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "libexif-0:0.6.22-1.el7.x86_64", "product": { "name": "libexif-0:0.6.22-1.el7.x86_64", "product_id": "libexif-0:0.6.22-1.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif@0.6.22-1.el7?arch=x86_64" } } }, { "category": "product_version", "name": "libexif-debuginfo-0:0.6.22-1.el7.x86_64", "product": { "name": "libexif-debuginfo-0:0.6.22-1.el7.x86_64", "product_id": "libexif-debuginfo-0:0.6.22-1.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif-debuginfo@0.6.22-1.el7?arch=x86_64" } } }, { "category": "product_version", "name": "libexif-devel-0:0.6.22-1.el7.x86_64", "product": { "name": "libexif-devel-0:0.6.22-1.el7.x86_64", "product_id": "libexif-devel-0:0.6.22-1.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif-devel@0.6.22-1.el7?arch=x86_64" } } }, { "category": "product_version", "name": "libexif-doc-0:0.6.22-1.el7.x86_64", "product": { "name": "libexif-doc-0:0.6.22-1.el7.x86_64", "product_id": "libexif-doc-0:0.6.22-1.el7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif-doc@0.6.22-1.el7?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "libexif-0:0.6.22-1.el7.src", "product": { "name": "libexif-0:0.6.22-1.el7.src", "product_id": "libexif-0:0.6.22-1.el7.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif@0.6.22-1.el7?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "libexif-0:0.6.22-1.el7.s390x", "product": { "name": "libexif-0:0.6.22-1.el7.s390x", "product_id": "libexif-0:0.6.22-1.el7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif@0.6.22-1.el7?arch=s390x" } } }, { "category": "product_version", "name": "libexif-debuginfo-0:0.6.22-1.el7.s390x", "product": { "name": "libexif-debuginfo-0:0.6.22-1.el7.s390x", "product_id": "libexif-debuginfo-0:0.6.22-1.el7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif-debuginfo@0.6.22-1.el7?arch=s390x" } } }, { "category": "product_version", "name": "libexif-devel-0:0.6.22-1.el7.s390x", "product": { "name": "libexif-devel-0:0.6.22-1.el7.s390x", "product_id": "libexif-devel-0:0.6.22-1.el7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif-devel@0.6.22-1.el7?arch=s390x" } } }, { "category": "product_version", "name": "libexif-doc-0:0.6.22-1.el7.s390x", "product": { "name": "libexif-doc-0:0.6.22-1.el7.s390x", "product_id": "libexif-doc-0:0.6.22-1.el7.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif-doc@0.6.22-1.el7?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "libexif-0:0.6.22-1.el7.s390", "product": { "name": "libexif-0:0.6.22-1.el7.s390", "product_id": "libexif-0:0.6.22-1.el7.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif@0.6.22-1.el7?arch=s390" } } }, { "category": "product_version", "name": "libexif-debuginfo-0:0.6.22-1.el7.s390", "product": { "name": "libexif-debuginfo-0:0.6.22-1.el7.s390", "product_id": "libexif-debuginfo-0:0.6.22-1.el7.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif-debuginfo@0.6.22-1.el7?arch=s390" } } }, { "category": "product_version", "name": "libexif-devel-0:0.6.22-1.el7.s390", "product": { "name": "libexif-devel-0:0.6.22-1.el7.s390", "product_id": "libexif-devel-0:0.6.22-1.el7.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif-devel@0.6.22-1.el7?arch=s390" } } } ], "category": "architecture", "name": "s390" }, { "branches": [ { "category": "product_version", "name": "libexif-0:0.6.22-1.el7.ppc64", "product": { "name": "libexif-0:0.6.22-1.el7.ppc64", "product_id": "libexif-0:0.6.22-1.el7.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif@0.6.22-1.el7?arch=ppc64" } } }, { "category": "product_version", "name": "libexif-debuginfo-0:0.6.22-1.el7.ppc64", "product": { "name": "libexif-debuginfo-0:0.6.22-1.el7.ppc64", "product_id": "libexif-debuginfo-0:0.6.22-1.el7.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif-debuginfo@0.6.22-1.el7?arch=ppc64" } } }, { "category": "product_version", "name": "libexif-devel-0:0.6.22-1.el7.ppc64", "product": { "name": "libexif-devel-0:0.6.22-1.el7.ppc64", "product_id": "libexif-devel-0:0.6.22-1.el7.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif-devel@0.6.22-1.el7?arch=ppc64" } } }, { "category": "product_version", "name": "libexif-doc-0:0.6.22-1.el7.ppc64", "product": { "name": "libexif-doc-0:0.6.22-1.el7.ppc64", "product_id": "libexif-doc-0:0.6.22-1.el7.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif-doc@0.6.22-1.el7?arch=ppc64" } } } ], "category": "architecture", "name": "ppc64" }, { "branches": [ { "category": "product_version", "name": "libexif-0:0.6.22-1.el7.ppc", "product": { "name": "libexif-0:0.6.22-1.el7.ppc", "product_id": "libexif-0:0.6.22-1.el7.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif@0.6.22-1.el7?arch=ppc" } } }, { "category": "product_version", "name": "libexif-debuginfo-0:0.6.22-1.el7.ppc", "product": { "name": "libexif-debuginfo-0:0.6.22-1.el7.ppc", "product_id": "libexif-debuginfo-0:0.6.22-1.el7.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif-debuginfo@0.6.22-1.el7?arch=ppc" } } }, { "category": "product_version", "name": "libexif-devel-0:0.6.22-1.el7.ppc", "product": { "name": "libexif-devel-0:0.6.22-1.el7.ppc", "product_id": "libexif-devel-0:0.6.22-1.el7.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif-devel@0.6.22-1.el7?arch=ppc" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "libexif-0:0.6.22-1.el7.ppc64le", "product": { "name": "libexif-0:0.6.22-1.el7.ppc64le", "product_id": "libexif-0:0.6.22-1.el7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif@0.6.22-1.el7?arch=ppc64le" } } }, { "category": "product_version", "name": "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "product": { "name": "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "product_id": "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif-debuginfo@0.6.22-1.el7?arch=ppc64le" } } }, { "category": "product_version", "name": "libexif-devel-0:0.6.22-1.el7.ppc64le", "product": { "name": "libexif-devel-0:0.6.22-1.el7.ppc64le", "product_id": "libexif-devel-0:0.6.22-1.el7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif-devel@0.6.22-1.el7?arch=ppc64le" } } }, { "category": "product_version", "name": "libexif-doc-0:0.6.22-1.el7.ppc64le", "product": { "name": "libexif-doc-0:0.6.22-1.el7.ppc64le", "product_id": "libexif-doc-0:0.6.22-1.el7.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif-doc@0.6.22-1.el7?arch=ppc64le" } } } ], "category": "architecture", "name": "ppc64le" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9:libexif-0:0.6.22-1.el7.i686" }, "product_reference": "libexif-0:0.6.22-1.el7.i686", "relates_to_product_reference": "7Client-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9:libexif-0:0.6.22-1.el7.ppc" }, "product_reference": "libexif-0:0.6.22-1.el7.ppc", "relates_to_product_reference": "7Client-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64" }, "product_reference": "libexif-0:0.6.22-1.el7.ppc64", "relates_to_product_reference": "7Client-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le" }, "product_reference": "libexif-0:0.6.22-1.el7.ppc64le", "relates_to_product_reference": "7Client-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9:libexif-0:0.6.22-1.el7.s390" }, "product_reference": "libexif-0:0.6.22-1.el7.s390", "relates_to_product_reference": "7Client-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9:libexif-0:0.6.22-1.el7.s390x" }, "product_reference": "libexif-0:0.6.22-1.el7.s390x", "relates_to_product_reference": "7Client-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.src as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9:libexif-0:0.6.22-1.el7.src" }, "product_reference": "libexif-0:0.6.22-1.el7.src", "relates_to_product_reference": "7Client-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64" }, "product_reference": "libexif-0:0.6.22-1.el7.x86_64", "relates_to_product_reference": "7Client-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.i686", "relates_to_product_reference": "7Client-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.ppc", "relates_to_product_reference": "7Client-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.ppc64", "relates_to_product_reference": "7Client-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "relates_to_product_reference": "7Client-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.s390", "relates_to_product_reference": "7Client-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.s390x", "relates_to_product_reference": "7Client-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.x86_64", "relates_to_product_reference": "7Client-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.i686", "relates_to_product_reference": "7Client-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.ppc", "relates_to_product_reference": "7Client-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.ppc64", "relates_to_product_reference": "7Client-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.ppc64le", "relates_to_product_reference": "7Client-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.s390", "relates_to_product_reference": "7Client-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.s390x", "relates_to_product_reference": "7Client-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.x86_64", "relates_to_product_reference": "7Client-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-doc-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64" }, "product_reference": "libexif-doc-0:0.6.22-1.el7.ppc64", "relates_to_product_reference": "7Client-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-doc-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le" }, "product_reference": "libexif-doc-0:0.6.22-1.el7.ppc64le", "relates_to_product_reference": "7Client-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-doc-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x" }, "product_reference": "libexif-doc-0:0.6.22-1.el7.s390x", "relates_to_product_reference": "7Client-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-doc-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64" }, "product_reference": "libexif-doc-0:0.6.22-1.el7.x86_64", "relates_to_product_reference": "7Client-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686" }, "product_reference": "libexif-0:0.6.22-1.el7.i686", "relates_to_product_reference": "7Client-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc" }, "product_reference": "libexif-0:0.6.22-1.el7.ppc", "relates_to_product_reference": "7Client-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64" }, "product_reference": "libexif-0:0.6.22-1.el7.ppc64", "relates_to_product_reference": "7Client-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le" }, "product_reference": "libexif-0:0.6.22-1.el7.ppc64le", "relates_to_product_reference": "7Client-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390" }, "product_reference": "libexif-0:0.6.22-1.el7.s390", "relates_to_product_reference": "7Client-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x" }, "product_reference": "libexif-0:0.6.22-1.el7.s390x", "relates_to_product_reference": "7Client-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.src as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src" }, "product_reference": "libexif-0:0.6.22-1.el7.src", "relates_to_product_reference": "7Client-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64" }, "product_reference": "libexif-0:0.6.22-1.el7.x86_64", "relates_to_product_reference": "7Client-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.i686", "relates_to_product_reference": "7Client-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.ppc", "relates_to_product_reference": "7Client-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.ppc64", "relates_to_product_reference": "7Client-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "relates_to_product_reference": "7Client-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.s390", "relates_to_product_reference": "7Client-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.s390x", "relates_to_product_reference": "7Client-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.x86_64", "relates_to_product_reference": "7Client-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.i686", "relates_to_product_reference": "7Client-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.ppc", "relates_to_product_reference": "7Client-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.ppc64", "relates_to_product_reference": "7Client-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.ppc64le", "relates_to_product_reference": "7Client-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.s390", "relates_to_product_reference": "7Client-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.s390x", "relates_to_product_reference": "7Client-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.x86_64", "relates_to_product_reference": "7Client-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-doc-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64" }, "product_reference": "libexif-doc-0:0.6.22-1.el7.ppc64", "relates_to_product_reference": "7Client-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-doc-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le" }, "product_reference": "libexif-doc-0:0.6.22-1.el7.ppc64le", "relates_to_product_reference": "7Client-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-doc-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x" }, "product_reference": "libexif-doc-0:0.6.22-1.el7.s390x", "relates_to_product_reference": "7Client-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-doc-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64" }, "product_reference": "libexif-doc-0:0.6.22-1.el7.x86_64", "relates_to_product_reference": "7Client-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686" }, "product_reference": "libexif-0:0.6.22-1.el7.i686", "relates_to_product_reference": "7ComputeNode-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc" }, "product_reference": "libexif-0:0.6.22-1.el7.ppc", "relates_to_product_reference": "7ComputeNode-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64" }, "product_reference": "libexif-0:0.6.22-1.el7.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le" }, "product_reference": "libexif-0:0.6.22-1.el7.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390" }, "product_reference": "libexif-0:0.6.22-1.el7.s390", "relates_to_product_reference": "7ComputeNode-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x" }, "product_reference": "libexif-0:0.6.22-1.el7.s390x", "relates_to_product_reference": "7ComputeNode-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.src as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src" }, "product_reference": "libexif-0:0.6.22-1.el7.src", "relates_to_product_reference": "7ComputeNode-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64" }, "product_reference": "libexif-0:0.6.22-1.el7.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.i686", "relates_to_product_reference": "7ComputeNode-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.ppc", "relates_to_product_reference": "7ComputeNode-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.s390", "relates_to_product_reference": "7ComputeNode-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.s390x", "relates_to_product_reference": "7ComputeNode-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.i686", "relates_to_product_reference": "7ComputeNode-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.ppc", "relates_to_product_reference": "7ComputeNode-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.s390", "relates_to_product_reference": "7ComputeNode-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.s390x", "relates_to_product_reference": "7ComputeNode-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-doc-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64" }, "product_reference": "libexif-doc-0:0.6.22-1.el7.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-doc-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le" }, "product_reference": "libexif-doc-0:0.6.22-1.el7.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-doc-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x" }, "product_reference": "libexif-doc-0:0.6.22-1.el7.s390x", "relates_to_product_reference": "7ComputeNode-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-doc-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64" }, "product_reference": "libexif-doc-0:0.6.22-1.el7.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9:libexif-0:0.6.22-1.el7.i686" }, "product_reference": "libexif-0:0.6.22-1.el7.i686", "relates_to_product_reference": "7Server-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9:libexif-0:0.6.22-1.el7.ppc" }, "product_reference": "libexif-0:0.6.22-1.el7.ppc", "relates_to_product_reference": "7Server-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64" }, "product_reference": "libexif-0:0.6.22-1.el7.ppc64", "relates_to_product_reference": "7Server-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le" }, "product_reference": "libexif-0:0.6.22-1.el7.ppc64le", "relates_to_product_reference": "7Server-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9:libexif-0:0.6.22-1.el7.s390" }, "product_reference": "libexif-0:0.6.22-1.el7.s390", "relates_to_product_reference": "7Server-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9:libexif-0:0.6.22-1.el7.s390x" }, "product_reference": "libexif-0:0.6.22-1.el7.s390x", "relates_to_product_reference": "7Server-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.src as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9:libexif-0:0.6.22-1.el7.src" }, "product_reference": "libexif-0:0.6.22-1.el7.src", "relates_to_product_reference": "7Server-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64" }, "product_reference": "libexif-0:0.6.22-1.el7.x86_64", "relates_to_product_reference": "7Server-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.i686", "relates_to_product_reference": "7Server-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.ppc", "relates_to_product_reference": "7Server-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.ppc64", "relates_to_product_reference": "7Server-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "relates_to_product_reference": "7Server-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.s390", "relates_to_product_reference": "7Server-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.s390x", "relates_to_product_reference": "7Server-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.x86_64", "relates_to_product_reference": "7Server-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.i686", "relates_to_product_reference": "7Server-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.ppc", "relates_to_product_reference": "7Server-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.ppc64", "relates_to_product_reference": "7Server-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.ppc64le", "relates_to_product_reference": "7Server-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.s390", "relates_to_product_reference": "7Server-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.s390x", "relates_to_product_reference": "7Server-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.x86_64", "relates_to_product_reference": "7Server-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-doc-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64" }, "product_reference": "libexif-doc-0:0.6.22-1.el7.ppc64", "relates_to_product_reference": "7Server-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-doc-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le" }, "product_reference": "libexif-doc-0:0.6.22-1.el7.ppc64le", "relates_to_product_reference": "7Server-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-doc-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x" }, "product_reference": "libexif-doc-0:0.6.22-1.el7.s390x", "relates_to_product_reference": "7Server-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-doc-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64" }, "product_reference": "libexif-doc-0:0.6.22-1.el7.x86_64", "relates_to_product_reference": "7Server-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686" }, "product_reference": "libexif-0:0.6.22-1.el7.i686", "relates_to_product_reference": "7Server-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc" }, "product_reference": "libexif-0:0.6.22-1.el7.ppc", "relates_to_product_reference": "7Server-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64" }, "product_reference": "libexif-0:0.6.22-1.el7.ppc64", "relates_to_product_reference": "7Server-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le" }, "product_reference": "libexif-0:0.6.22-1.el7.ppc64le", "relates_to_product_reference": "7Server-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390" }, "product_reference": "libexif-0:0.6.22-1.el7.s390", "relates_to_product_reference": "7Server-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x" }, "product_reference": "libexif-0:0.6.22-1.el7.s390x", "relates_to_product_reference": "7Server-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.src as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src" }, "product_reference": "libexif-0:0.6.22-1.el7.src", "relates_to_product_reference": "7Server-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64" }, "product_reference": "libexif-0:0.6.22-1.el7.x86_64", "relates_to_product_reference": "7Server-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.i686", "relates_to_product_reference": "7Server-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.ppc", "relates_to_product_reference": "7Server-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.ppc64", "relates_to_product_reference": "7Server-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "relates_to_product_reference": "7Server-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.s390", "relates_to_product_reference": "7Server-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.s390x", "relates_to_product_reference": "7Server-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.x86_64", "relates_to_product_reference": "7Server-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.i686", "relates_to_product_reference": "7Server-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.ppc", "relates_to_product_reference": "7Server-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.ppc64", "relates_to_product_reference": "7Server-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.ppc64le", "relates_to_product_reference": "7Server-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.s390", "relates_to_product_reference": "7Server-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.s390x", "relates_to_product_reference": "7Server-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.x86_64", "relates_to_product_reference": "7Server-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-doc-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64" }, "product_reference": "libexif-doc-0:0.6.22-1.el7.ppc64", "relates_to_product_reference": "7Server-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-doc-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le" }, "product_reference": "libexif-doc-0:0.6.22-1.el7.ppc64le", "relates_to_product_reference": "7Server-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-doc-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x" }, "product_reference": "libexif-doc-0:0.6.22-1.el7.s390x", "relates_to_product_reference": "7Server-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-doc-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64" }, "product_reference": "libexif-doc-0:0.6.22-1.el7.x86_64", "relates_to_product_reference": "7Server-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686" }, "product_reference": "libexif-0:0.6.22-1.el7.i686", "relates_to_product_reference": "7Workstation-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc" }, "product_reference": "libexif-0:0.6.22-1.el7.ppc", "relates_to_product_reference": "7Workstation-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64" }, "product_reference": "libexif-0:0.6.22-1.el7.ppc64", "relates_to_product_reference": "7Workstation-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le" }, "product_reference": "libexif-0:0.6.22-1.el7.ppc64le", "relates_to_product_reference": "7Workstation-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390" }, "product_reference": "libexif-0:0.6.22-1.el7.s390", "relates_to_product_reference": "7Workstation-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x" }, "product_reference": "libexif-0:0.6.22-1.el7.s390x", "relates_to_product_reference": "7Workstation-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.src as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9:libexif-0:0.6.22-1.el7.src" }, "product_reference": "libexif-0:0.6.22-1.el7.src", "relates_to_product_reference": "7Workstation-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64" }, "product_reference": "libexif-0:0.6.22-1.el7.x86_64", "relates_to_product_reference": "7Workstation-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.i686", "relates_to_product_reference": "7Workstation-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.ppc", "relates_to_product_reference": "7Workstation-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.ppc64", "relates_to_product_reference": "7Workstation-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "relates_to_product_reference": "7Workstation-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.s390", "relates_to_product_reference": "7Workstation-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.s390x", "relates_to_product_reference": "7Workstation-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.x86_64", "relates_to_product_reference": "7Workstation-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.i686", "relates_to_product_reference": "7Workstation-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.ppc", "relates_to_product_reference": "7Workstation-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.ppc64", "relates_to_product_reference": "7Workstation-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.ppc64le", "relates_to_product_reference": "7Workstation-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.s390", "relates_to_product_reference": "7Workstation-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.s390x", "relates_to_product_reference": "7Workstation-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.x86_64", "relates_to_product_reference": "7Workstation-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-doc-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64" }, "product_reference": "libexif-doc-0:0.6.22-1.el7.ppc64", "relates_to_product_reference": "7Workstation-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-doc-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le" }, "product_reference": "libexif-doc-0:0.6.22-1.el7.ppc64le", "relates_to_product_reference": "7Workstation-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-doc-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x" }, "product_reference": "libexif-doc-0:0.6.22-1.el7.s390x", "relates_to_product_reference": "7Workstation-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-doc-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64" }, "product_reference": "libexif-doc-0:0.6.22-1.el7.x86_64", "relates_to_product_reference": "7Workstation-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686" }, "product_reference": "libexif-0:0.6.22-1.el7.i686", "relates_to_product_reference": "7Workstation-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc" }, "product_reference": "libexif-0:0.6.22-1.el7.ppc", "relates_to_product_reference": "7Workstation-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64" }, "product_reference": "libexif-0:0.6.22-1.el7.ppc64", "relates_to_product_reference": "7Workstation-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le" }, "product_reference": "libexif-0:0.6.22-1.el7.ppc64le", "relates_to_product_reference": "7Workstation-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390" }, "product_reference": "libexif-0:0.6.22-1.el7.s390", "relates_to_product_reference": "7Workstation-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x" }, "product_reference": "libexif-0:0.6.22-1.el7.s390x", "relates_to_product_reference": "7Workstation-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src" }, "product_reference": "libexif-0:0.6.22-1.el7.src", "relates_to_product_reference": "7Workstation-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64" }, "product_reference": "libexif-0:0.6.22-1.el7.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.i686", "relates_to_product_reference": "7Workstation-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.ppc", "relates_to_product_reference": "7Workstation-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.ppc64", "relates_to_product_reference": "7Workstation-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "relates_to_product_reference": "7Workstation-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.s390", "relates_to_product_reference": "7Workstation-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.s390x", "relates_to_product_reference": "7Workstation-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64" }, "product_reference": "libexif-debuginfo-0:0.6.22-1.el7.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.i686", "relates_to_product_reference": "7Workstation-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.ppc", "relates_to_product_reference": "7Workstation-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.ppc64", "relates_to_product_reference": "7Workstation-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.ppc64le", "relates_to_product_reference": "7Workstation-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.s390", "relates_to_product_reference": "7Workstation-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.s390x", "relates_to_product_reference": "7Workstation-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64" }, "product_reference": "libexif-devel-0:0.6.22-1.el7.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-doc-0:0.6.22-1.el7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64" }, "product_reference": "libexif-doc-0:0.6.22-1.el7.ppc64", "relates_to_product_reference": "7Workstation-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-doc-0:0.6.22-1.el7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le" }, "product_reference": "libexif-doc-0:0.6.22-1.el7.ppc64le", "relates_to_product_reference": "7Workstation-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-doc-0:0.6.22-1.el7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x" }, "product_reference": "libexif-doc-0:0.6.22-1.el7.s390x", "relates_to_product_reference": "7Workstation-optional-7.9" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-doc-0:0.6.22-1.el7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64" }, "product_reference": "libexif-doc-0:0.6.22-1.el7.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9" } ] }, "vulnerabilities": [ { "cve": "CVE-2019-9278", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2019-12-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1789031" } ], "notes": [ { "category": "description", "text": "In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media content provider with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112537774", "title": "Vulnerability description" }, { "category": "summary", "text": "libexif: out of bounds write in exif-data.c", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-9278" }, { "category": "external", "summary": "RHBZ#1789031", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1789031" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-9278", "url": "https://www.cve.org/CVERecord?id=CVE-2019-9278" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-9278", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9278" } ], "release_date": "2019-12-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-09-29T20:17:18+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:4040" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "libexif: out of bounds write in exif-data.c" }, { "cve": "CVE-2020-0093", "cwe": { "id": "CWE-125", "name": "Out-of-bounds Read" }, "discovery_date": "2020-05-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1852487" } ], "notes": [ { "category": "description", "text": "In exif_data_save_data_entry of exif-data.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-148705132", "title": "Vulnerability description" }, { "category": "summary", "text": "libexif: out of bounds read due to a missing bounds check in exif_data_save_data_entry function in exif-data.c", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-0093" }, { "category": "external", "summary": "RHBZ#1852487", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852487" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-0093", "url": "https://www.cve.org/CVERecord?id=CVE-2020-0093" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-0093", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-0093" } ], "release_date": "2020-05-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-09-29T20:17:18+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:4040" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 5.0, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N", "version": "3.1" }, "products": [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "libexif: out of bounds read due to a missing bounds check in exif_data_save_data_entry function in exif-data.c" }, { "cve": "CVE-2020-0182", "cwe": { "id": "CWE-125", "name": "Out-of-bounds Read" }, "discovery_date": "2020-06-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1852490" } ], "notes": [ { "category": "description", "text": "In exif_entry_get_value of exif-entry.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-147140917", "title": "Vulnerability description" }, { "category": "summary", "text": "libexif: out of bounds read due to a missing bounds check in exif_entry_get_value function in exif-entry.c", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-0182" }, { "category": "external", "summary": "RHBZ#1852490", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852490" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-0182", "url": "https://www.cve.org/CVERecord?id=CVE-2020-0182" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-0182", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-0182" } ], "release_date": "2020-06-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-09-29T20:17:18+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:4040" }, { "category": "workaround", "details": "This flaw could be mitigated by not passing untrusted input to libexif.", "product_ids": [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L", "version": "3.1" }, "products": [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "libexif: out of bounds read due to a missing bounds check in exif_entry_get_value function in exif-entry.c" }, { "cve": "CVE-2020-12767", "cwe": { "id": "CWE-369", "name": "Divide By Zero" }, "discovery_date": "2020-05-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1834950" } ], "notes": [ { "category": "description", "text": "exif_entry_get_value in exif-entry.c in libexif 0.6.21 has a divide-by-zero error.", "title": "Vulnerability description" }, { "category": "summary", "text": "libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-12767" }, { "category": "external", "summary": "RHBZ#1834950", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1834950" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-12767", "url": "https://www.cve.org/CVERecord?id=CVE-2020-12767" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-12767", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-12767" } ], "release_date": "2020-02-17T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-09-29T20:17:18+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:4040" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 6.2, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c" }, { "cve": "CVE-2020-13113", "cwe": { "id": "CWE-822", "name": "Untrusted Pointer Dereference" }, "discovery_date": "2020-05-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1840347" } ], "notes": [ { "category": "description", "text": "An issue was discovered in libexif before 0.6.22. Use of uninitialized memory in EXIF Makernote handling could lead to crashes and potential use-after-free conditions.", "title": "Vulnerability description" }, { "category": "summary", "text": "libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and use-after-free", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-13113" }, { "category": "external", "summary": "RHBZ#1840347", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1840347" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-13113", "url": "https://www.cve.org/CVERecord?id=CVE-2020-13113" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-13113", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-13113" } ], "release_date": "2020-05-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-09-29T20:17:18+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:4040" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.2, "baseSeverity": "HIGH", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H", "version": "3.1" }, "products": [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and use-after-free" }, { "cve": "CVE-2020-13114", "cwe": { "id": "CWE-400", "name": "Uncontrolled Resource Consumption" }, "discovery_date": "2020-05-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1840350" } ], "notes": [ { "category": "description", "text": "An issue was discovered in libexif before 0.6.22. An unrestricted size in handling Canon EXIF MakerNote data could lead to consumption of large amounts of compute time for decoding EXIF data.", "title": "Vulnerability description" }, { "category": "summary", "text": "libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-13114" }, { "category": "external", "summary": "RHBZ#1840350", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1840350" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-13114", "url": "https://www.cve.org/CVERecord?id=CVE-2020-13114" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-13114", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-13114" } ], "release_date": "2020-05-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-09-29T20:17:18+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:4040" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "7Client-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-0:0.6.22-1.el7.src", "7Client-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Client-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Client-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.src", "7ComputeNode-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7ComputeNode-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-0:0.6.22-1.el7.src", "7Server-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Server-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Server-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-7.9:libexif-doc-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.src", "7Workstation-optional-7.9:libexif-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-debuginfo-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.i686", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-devel-0:0.6.22-1.el7.x86_64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.ppc64le", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.s390x", "7Workstation-optional-7.9:libexif-doc-0:0.6.22-1.el7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time" } ] }
rhsa-2020_4766
Vulnerability from csaf_redhat
Published
2020-11-04 01:48
Modified
2024-11-22 15:19
Summary
Red Hat Security Advisory: libexif security, bug fix, and enhancement update
Notes
Topic
An update for libexif is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The libexif packages provide a library for extracting extra information from image files.
The following packages have been upgraded to a later upstream version: libexif (0.6.22). (BZ#1841320)
Security Fix(es):
* libexif: out of bounds write in exif-data.c (CVE-2019-9278)
* libexif: out of bounds read due to a missing bounds check in exif_data_save_data_entry function in exif-data.c (CVE-2020-0093)
* libexif: integer overflow in exif_data_load_data_thumbnail function in exif-data.c (CVE-2020-0181)
* libexif: integer overflow in exif_data_load_data_content function in exif-data.c (CVE-2020-0198)
* libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and use-after-free (CVE-2020-13113)
* libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time (CVE-2020-13114)
* libexif: out of bounds read due to a missing bounds check in exif_entry_get_value function in exif-entry.c (CVE-2020-0182)
* libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c (CVE-2020-12767)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.3 Release Notes linked from the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for libexif is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The libexif packages provide a library for extracting extra information from image files.\n\nThe following packages have been upgraded to a later upstream version: libexif (0.6.22). (BZ#1841320)\n\nSecurity Fix(es):\n\n* libexif: out of bounds write in exif-data.c (CVE-2019-9278)\n\n* libexif: out of bounds read due to a missing bounds check in exif_data_save_data_entry function in exif-data.c (CVE-2020-0093)\n\n* libexif: integer overflow in exif_data_load_data_thumbnail function in exif-data.c (CVE-2020-0181)\n\n* libexif: integer overflow in exif_data_load_data_content function in exif-data.c (CVE-2020-0198)\n\n* libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and use-after-free (CVE-2020-13113)\n\n* libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time (CVE-2020-13114)\n\n* libexif: out of bounds read due to a missing bounds check in exif_entry_get_value function in exif-entry.c (CVE-2020-0182)\n\n* libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c (CVE-2020-12767)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 8.3 Release Notes linked from the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2020:4766", "url": "https://access.redhat.com/errata/RHSA-2020:4766" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.3_release_notes/", "url": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.3_release_notes/" }, { "category": "external", "summary": "1789031", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1789031" }, { "category": "external", "summary": "1834950", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1834950" }, { "category": "external", "summary": "1840347", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1840347" }, { "category": "external", "summary": "1840350", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1840350" }, { "category": "external", "summary": "1841320", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1841320" }, { "category": "external", "summary": "1847131", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1847131" }, { "category": "external", "summary": "1847133", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1847133" }, { "category": "external", "summary": "1852487", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852487" }, { "category": "external", "summary": "1852490", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852490" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_4766.json" } ], "title": "Red Hat Security Advisory: libexif security, bug fix, and enhancement update", "tracking": { "current_release_date": "2024-11-22T15:19:25+00:00", "generator": { "date": "2024-11-22T15:19:25+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2020:4766", "initial_release_date": "2020-11-04T01:48:17+00:00", "revision_history": [ { "date": "2020-11-04T01:48:17+00:00", "number": "1", "summary": "Initial version" }, { "date": "2020-11-04T01:48:17+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T15:19:25+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux AppStream (v. 8)", "product": { "name": "Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA", "product_identification_helper": { "cpe": "cpe:/a:redhat:enterprise_linux:8::appstream" } } }, { "category": "product_name", "name": "Red Hat CodeReady Linux Builder (v. 8)", "product": { "name": "Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.3.0.GA", "product_identification_helper": { "cpe": "cpe:/a:redhat:enterprise_linux:8::crb" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "libexif-devel-0:0.6.22-4.el8.i686", "product": { "name": "libexif-devel-0:0.6.22-4.el8.i686", "product_id": "libexif-devel-0:0.6.22-4.el8.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif-devel@0.6.22-4.el8?arch=i686" } } }, { "category": "product_version", "name": "libexif-debugsource-0:0.6.22-4.el8.i686", "product": { "name": "libexif-debugsource-0:0.6.22-4.el8.i686", "product_id": "libexif-debugsource-0:0.6.22-4.el8.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif-debugsource@0.6.22-4.el8?arch=i686" } } }, { "category": "product_version", "name": "libexif-debuginfo-0:0.6.22-4.el8.i686", "product": { "name": "libexif-debuginfo-0:0.6.22-4.el8.i686", "product_id": "libexif-debuginfo-0:0.6.22-4.el8.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif-debuginfo@0.6.22-4.el8?arch=i686" } } }, { "category": "product_version", "name": "libexif-0:0.6.22-4.el8.i686", "product": { "name": "libexif-0:0.6.22-4.el8.i686", "product_id": "libexif-0:0.6.22-4.el8.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif@0.6.22-4.el8?arch=i686" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "libexif-devel-0:0.6.22-4.el8.x86_64", "product": { "name": "libexif-devel-0:0.6.22-4.el8.x86_64", "product_id": "libexif-devel-0:0.6.22-4.el8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif-devel@0.6.22-4.el8?arch=x86_64" } } }, { "category": "product_version", "name": "libexif-debugsource-0:0.6.22-4.el8.x86_64", "product": { "name": "libexif-debugsource-0:0.6.22-4.el8.x86_64", "product_id": "libexif-debugsource-0:0.6.22-4.el8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif-debugsource@0.6.22-4.el8?arch=x86_64" } } }, { "category": "product_version", "name": "libexif-debuginfo-0:0.6.22-4.el8.x86_64", "product": { "name": "libexif-debuginfo-0:0.6.22-4.el8.x86_64", "product_id": "libexif-debuginfo-0:0.6.22-4.el8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif-debuginfo@0.6.22-4.el8?arch=x86_64" } } }, { "category": "product_version", "name": "libexif-0:0.6.22-4.el8.x86_64", "product": { "name": "libexif-0:0.6.22-4.el8.x86_64", "product_id": "libexif-0:0.6.22-4.el8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif@0.6.22-4.el8?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "libexif-devel-0:0.6.22-4.el8.ppc64le", "product": { "name": "libexif-devel-0:0.6.22-4.el8.ppc64le", "product_id": "libexif-devel-0:0.6.22-4.el8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif-devel@0.6.22-4.el8?arch=ppc64le" } } }, { "category": "product_version", "name": "libexif-debugsource-0:0.6.22-4.el8.ppc64le", "product": { "name": "libexif-debugsource-0:0.6.22-4.el8.ppc64le", "product_id": "libexif-debugsource-0:0.6.22-4.el8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif-debugsource@0.6.22-4.el8?arch=ppc64le" } } }, { "category": "product_version", "name": "libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "product": { "name": "libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "product_id": "libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif-debuginfo@0.6.22-4.el8?arch=ppc64le" } } }, { "category": "product_version", "name": "libexif-0:0.6.22-4.el8.ppc64le", "product": { "name": "libexif-0:0.6.22-4.el8.ppc64le", "product_id": "libexif-0:0.6.22-4.el8.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif@0.6.22-4.el8?arch=ppc64le" } } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "libexif-devel-0:0.6.22-4.el8.s390x", "product": { "name": "libexif-devel-0:0.6.22-4.el8.s390x", "product_id": "libexif-devel-0:0.6.22-4.el8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif-devel@0.6.22-4.el8?arch=s390x" } } }, { "category": "product_version", "name": "libexif-debugsource-0:0.6.22-4.el8.s390x", "product": { "name": "libexif-debugsource-0:0.6.22-4.el8.s390x", "product_id": "libexif-debugsource-0:0.6.22-4.el8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif-debugsource@0.6.22-4.el8?arch=s390x" } } }, { "category": "product_version", "name": "libexif-debuginfo-0:0.6.22-4.el8.s390x", "product": { "name": "libexif-debuginfo-0:0.6.22-4.el8.s390x", "product_id": "libexif-debuginfo-0:0.6.22-4.el8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif-debuginfo@0.6.22-4.el8?arch=s390x" } } }, { "category": "product_version", "name": "libexif-0:0.6.22-4.el8.s390x", "product": { "name": "libexif-0:0.6.22-4.el8.s390x", "product_id": "libexif-0:0.6.22-4.el8.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif@0.6.22-4.el8?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "libexif-devel-0:0.6.22-4.el8.aarch64", "product": { "name": "libexif-devel-0:0.6.22-4.el8.aarch64", "product_id": "libexif-devel-0:0.6.22-4.el8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif-devel@0.6.22-4.el8?arch=aarch64" } } }, { "category": "product_version", "name": "libexif-debugsource-0:0.6.22-4.el8.aarch64", "product": { "name": "libexif-debugsource-0:0.6.22-4.el8.aarch64", "product_id": "libexif-debugsource-0:0.6.22-4.el8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif-debugsource@0.6.22-4.el8?arch=aarch64" } } }, { "category": "product_version", "name": "libexif-debuginfo-0:0.6.22-4.el8.aarch64", "product": { "name": "libexif-debuginfo-0:0.6.22-4.el8.aarch64", "product_id": "libexif-debuginfo-0:0.6.22-4.el8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif-debuginfo@0.6.22-4.el8?arch=aarch64" } } }, { "category": "product_version", "name": "libexif-0:0.6.22-4.el8.aarch64", "product": { "name": "libexif-0:0.6.22-4.el8.aarch64", "product_id": "libexif-0:0.6.22-4.el8.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif@0.6.22-4.el8?arch=aarch64" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "libexif-0:0.6.22-4.el8.src", "product": { "name": "libexif-0:0.6.22-4.el8.src", "product_id": "libexif-0:0.6.22-4.el8.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/libexif@0.6.22-4.el8?arch=src" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-4.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64" }, "product_reference": "libexif-0:0.6.22-4.el8.aarch64", "relates_to_product_reference": "AppStream-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-4.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686" }, "product_reference": "libexif-0:0.6.22-4.el8.i686", "relates_to_product_reference": "AppStream-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-4.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le" }, "product_reference": "libexif-0:0.6.22-4.el8.ppc64le", "relates_to_product_reference": "AppStream-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-4.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x" }, "product_reference": "libexif-0:0.6.22-4.el8.s390x", "relates_to_product_reference": "AppStream-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-4.el8.src as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src" }, "product_reference": "libexif-0:0.6.22-4.el8.src", "relates_to_product_reference": "AppStream-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-4.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64" }, "product_reference": "libexif-0:0.6.22-4.el8.x86_64", "relates_to_product_reference": "AppStream-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-4.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64" }, "product_reference": "libexif-debuginfo-0:0.6.22-4.el8.aarch64", "relates_to_product_reference": "AppStream-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-4.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686" }, "product_reference": "libexif-debuginfo-0:0.6.22-4.el8.i686", "relates_to_product_reference": "AppStream-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-4.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le" }, "product_reference": "libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "relates_to_product_reference": "AppStream-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-4.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x" }, "product_reference": "libexif-debuginfo-0:0.6.22-4.el8.s390x", "relates_to_product_reference": "AppStream-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-4.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64" }, "product_reference": "libexif-debuginfo-0:0.6.22-4.el8.x86_64", "relates_to_product_reference": "AppStream-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debugsource-0:0.6.22-4.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64" }, "product_reference": "libexif-debugsource-0:0.6.22-4.el8.aarch64", "relates_to_product_reference": "AppStream-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debugsource-0:0.6.22-4.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686" }, "product_reference": "libexif-debugsource-0:0.6.22-4.el8.i686", "relates_to_product_reference": "AppStream-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debugsource-0:0.6.22-4.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le" }, "product_reference": "libexif-debugsource-0:0.6.22-4.el8.ppc64le", "relates_to_product_reference": "AppStream-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debugsource-0:0.6.22-4.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x" }, "product_reference": "libexif-debugsource-0:0.6.22-4.el8.s390x", "relates_to_product_reference": "AppStream-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debugsource-0:0.6.22-4.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64" }, "product_reference": "libexif-debugsource-0:0.6.22-4.el8.x86_64", "relates_to_product_reference": "AppStream-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-4.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64" }, "product_reference": "libexif-devel-0:0.6.22-4.el8.aarch64", "relates_to_product_reference": "AppStream-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-4.el8.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686" }, "product_reference": "libexif-devel-0:0.6.22-4.el8.i686", "relates_to_product_reference": "AppStream-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-4.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le" }, "product_reference": "libexif-devel-0:0.6.22-4.el8.ppc64le", "relates_to_product_reference": "AppStream-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-4.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x" }, "product_reference": "libexif-devel-0:0.6.22-4.el8.s390x", "relates_to_product_reference": "AppStream-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-4.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", "product_id": "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64" }, "product_reference": "libexif-devel-0:0.6.22-4.el8.x86_64", "relates_to_product_reference": "AppStream-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-4.el8.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64" }, "product_reference": "libexif-0:0.6.22-4.el8.aarch64", "relates_to_product_reference": "CRB-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-4.el8.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686" }, "product_reference": "libexif-0:0.6.22-4.el8.i686", "relates_to_product_reference": "CRB-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-4.el8.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le" }, "product_reference": "libexif-0:0.6.22-4.el8.ppc64le", "relates_to_product_reference": "CRB-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-4.el8.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x" }, "product_reference": "libexif-0:0.6.22-4.el8.s390x", "relates_to_product_reference": "CRB-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-4.el8.src as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src" }, "product_reference": "libexif-0:0.6.22-4.el8.src", "relates_to_product_reference": "CRB-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-0:0.6.22-4.el8.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64" }, "product_reference": "libexif-0:0.6.22-4.el8.x86_64", "relates_to_product_reference": "CRB-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-4.el8.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64" }, "product_reference": "libexif-debuginfo-0:0.6.22-4.el8.aarch64", "relates_to_product_reference": "CRB-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-4.el8.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686" }, "product_reference": "libexif-debuginfo-0:0.6.22-4.el8.i686", "relates_to_product_reference": "CRB-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-4.el8.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le" }, "product_reference": "libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "relates_to_product_reference": "CRB-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-4.el8.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x" }, "product_reference": "libexif-debuginfo-0:0.6.22-4.el8.s390x", "relates_to_product_reference": "CRB-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debuginfo-0:0.6.22-4.el8.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64" }, "product_reference": "libexif-debuginfo-0:0.6.22-4.el8.x86_64", "relates_to_product_reference": "CRB-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debugsource-0:0.6.22-4.el8.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64" }, "product_reference": "libexif-debugsource-0:0.6.22-4.el8.aarch64", "relates_to_product_reference": "CRB-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debugsource-0:0.6.22-4.el8.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686" }, "product_reference": "libexif-debugsource-0:0.6.22-4.el8.i686", "relates_to_product_reference": "CRB-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debugsource-0:0.6.22-4.el8.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le" }, "product_reference": "libexif-debugsource-0:0.6.22-4.el8.ppc64le", "relates_to_product_reference": "CRB-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debugsource-0:0.6.22-4.el8.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x" }, "product_reference": "libexif-debugsource-0:0.6.22-4.el8.s390x", "relates_to_product_reference": "CRB-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-debugsource-0:0.6.22-4.el8.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64" }, "product_reference": "libexif-debugsource-0:0.6.22-4.el8.x86_64", "relates_to_product_reference": "CRB-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-4.el8.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64" }, "product_reference": "libexif-devel-0:0.6.22-4.el8.aarch64", "relates_to_product_reference": "CRB-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-4.el8.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686" }, "product_reference": "libexif-devel-0:0.6.22-4.el8.i686", "relates_to_product_reference": "CRB-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-4.el8.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le" }, "product_reference": "libexif-devel-0:0.6.22-4.el8.ppc64le", "relates_to_product_reference": "CRB-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-4.el8.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x" }, "product_reference": "libexif-devel-0:0.6.22-4.el8.s390x", "relates_to_product_reference": "CRB-8.3.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "libexif-devel-0:0.6.22-4.el8.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64" }, "product_reference": "libexif-devel-0:0.6.22-4.el8.x86_64", "relates_to_product_reference": "CRB-8.3.0.GA" } ] }, "vulnerabilities": [ { "cve": "CVE-2019-9278", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2019-12-02T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1789031" } ], "notes": [ { "category": "description", "text": "In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media content provider with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112537774", "title": "Vulnerability description" }, { "category": "summary", "text": "libexif: out of bounds write in exif-data.c", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2019-9278" }, { "category": "external", "summary": "RHBZ#1789031", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1789031" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2019-9278", "url": "https://www.cve.org/CVERecord?id=CVE-2019-9278" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-9278", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9278" } ], "release_date": "2019-12-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-11-04T01:48:17+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:4766" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "libexif: out of bounds write in exif-data.c" }, { "cve": "CVE-2020-0093", "cwe": { "id": "CWE-125", "name": "Out-of-bounds Read" }, "discovery_date": "2020-05-14T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1852487" } ], "notes": [ { "category": "description", "text": "In exif_data_save_data_entry of exif-data.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-148705132", "title": "Vulnerability description" }, { "category": "summary", "text": "libexif: out of bounds read due to a missing bounds check in exif_data_save_data_entry function in exif-data.c", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-0093" }, { "category": "external", "summary": "RHBZ#1852487", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852487" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-0093", "url": "https://www.cve.org/CVERecord?id=CVE-2020-0093" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-0093", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-0093" } ], "release_date": "2020-05-04T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-11-04T01:48:17+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:4766" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 5.0, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N", "version": "3.1" }, "products": [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "libexif: out of bounds read due to a missing bounds check in exif_data_save_data_entry function in exif-data.c" }, { "cve": "CVE-2020-0181", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-06-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1847131" } ], "notes": [ { "category": "description", "text": "In exif_data_load_data_thumbnail of exif-data.c, there is a possible denial of service due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-145075076", "title": "Vulnerability description" }, { "category": "summary", "text": "libexif: integer overflow in exif_data_load_data_thumbnail function in exif-data.c", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-0181" }, { "category": "external", "summary": "RHBZ#1847131", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1847131" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-0181", "url": "https://www.cve.org/CVERecord?id=CVE-2020-0181" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-0181", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-0181" } ], "release_date": "2020-06-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-11-04T01:48:17+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:4766" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.2, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H", "version": "3.1" }, "products": [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "libexif: integer overflow in exif_data_load_data_thumbnail function in exif-data.c" }, { "cve": "CVE-2020-0182", "cwe": { "id": "CWE-125", "name": "Out-of-bounds Read" }, "discovery_date": "2020-06-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1852490" } ], "notes": [ { "category": "description", "text": "In exif_entry_get_value of exif-entry.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-147140917", "title": "Vulnerability description" }, { "category": "summary", "text": "libexif: out of bounds read due to a missing bounds check in exif_entry_get_value function in exif-entry.c", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-0182" }, { "category": "external", "summary": "RHBZ#1852490", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1852490" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-0182", "url": "https://www.cve.org/CVERecord?id=CVE-2020-0182" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-0182", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-0182" } ], "release_date": "2020-06-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-11-04T01:48:17+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:4766" }, { "category": "workaround", "details": "This flaw could be mitigated by not passing untrusted input to libexif.", "product_ids": [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L", "version": "3.1" }, "products": [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "libexif: out of bounds read due to a missing bounds check in exif_entry_get_value function in exif-entry.c" }, { "cve": "CVE-2020-0198", "cwe": { "id": "CWE-125", "name": "Out-of-bounds Read" }, "discovery_date": "2020-06-07T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1847133" } ], "notes": [ { "category": "description", "text": "In exif_data_load_data_content of exif-data.c, there is a possible UBSAN abort due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10Android ID: A-146428941", "title": "Vulnerability description" }, { "category": "summary", "text": "libexif: integer overflow in exif_data_load_data_content function in exif-data.c", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-0198" }, { "category": "external", "summary": "RHBZ#1847133", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1847133" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-0198", "url": "https://www.cve.org/CVERecord?id=CVE-2020-0198" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-0198", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-0198" } ], "release_date": "2020-06-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-11-04T01:48:17+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:4766" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "libexif: integer overflow in exif_data_load_data_content function in exif-data.c" }, { "cve": "CVE-2020-12767", "cwe": { "id": "CWE-369", "name": "Divide By Zero" }, "discovery_date": "2020-05-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1834950" } ], "notes": [ { "category": "description", "text": "exif_entry_get_value in exif-entry.c in libexif 0.6.21 has a divide-by-zero error.", "title": "Vulnerability description" }, { "category": "summary", "text": "libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-12767" }, { "category": "external", "summary": "RHBZ#1834950", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1834950" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-12767", "url": "https://www.cve.org/CVERecord?id=CVE-2020-12767" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-12767", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-12767" } ], "release_date": "2020-02-17T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-11-04T01:48:17+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:4766" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 6.2, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "libexif: divide-by-zero in exif_entry_get_value function in exif-entry.c" }, { "cve": "CVE-2020-13113", "cwe": { "id": "CWE-822", "name": "Untrusted Pointer Dereference" }, "discovery_date": "2020-05-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1840347" } ], "notes": [ { "category": "description", "text": "An issue was discovered in libexif before 0.6.22. Use of uninitialized memory in EXIF Makernote handling could lead to crashes and potential use-after-free conditions.", "title": "Vulnerability description" }, { "category": "summary", "text": "libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and use-after-free", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-13113" }, { "category": "external", "summary": "RHBZ#1840347", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1840347" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-13113", "url": "https://www.cve.org/CVERecord?id=CVE-2020-13113" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-13113", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-13113" } ], "release_date": "2020-05-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-11-04T01:48:17+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:4766" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.2, "baseSeverity": "HIGH", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H", "version": "3.1" }, "products": [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "libexif: use of uninitialized memory in EXIF Makernote handling can lead to crashes and use-after-free" }, { "cve": "CVE-2020-13114", "cwe": { "id": "CWE-400", "name": "Uncontrolled Resource Consumption" }, "discovery_date": "2020-05-21T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1840350" } ], "notes": [ { "category": "description", "text": "An issue was discovered in libexif before 0.6.22. An unrestricted size in handling Canon EXIF MakerNote data could lead to consumption of large amounts of compute time for decoding EXIF data.", "title": "Vulnerability description" }, { "category": "summary", "text": "libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-13114" }, { "category": "external", "summary": "RHBZ#1840350", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1840350" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-13114", "url": "https://www.cve.org/CVERecord?id=CVE-2020-13114" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-13114", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-13114" } ], "release_date": "2020-05-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2020-11-04T01:48:17+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2020:4766" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "AppStream-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "AppStream-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.src", "CRB-8.3.0.GA:libexif-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debuginfo-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-debugsource-0:0.6.22-4.el8.x86_64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.aarch64", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.i686", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.ppc64le", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.s390x", "CRB-8.3.0.GA:libexif-devel-0:0.6.22-4.el8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "libexif: unrestricted size in handling Canon EXIF MakerNote data can lead to consumption of large amounts of compute time" } ] }
ghsa-wwvf-m6j5-65jw
Vulnerability from github
Published
2022-05-24 22:00
Modified
2022-10-14 12:00
Severity ?
Details
In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media content provider with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112537774
{ "affected": [], "aliases": [ "CVE-2019-9278" ], "database_specific": { "cwe_ids": [ "CWE-787" ], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2019-09-27T19:15:00Z", "severity": "MODERATE" }, "details": "In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media content provider with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112537774", "id": "GHSA-wwvf-m6j5-65jw", "modified": "2022-10-14T12:00:21Z", "published": "2022-05-24T22:00:49Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9278" }, { "type": "WEB", "url": "https://github.com/libexif/libexif/issues/26" }, { "type": "WEB", "url": "https://github.com/libexif/libexif/commit/75aa73267fdb1e0ebfbc00369e7312bac43d0566" }, { "type": "WEB", "url": "https://lists.debian.org/debian-lts-announce/2020/02/msg00007.html" }, { "type": "WEB", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MO2VTHD7OLPJDCJBHKUQTBAHZOBBCF6X" }, { "type": "WEB", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VA5BPQLOFXIZOOJHBYDU635Z5KLUMTDD" }, { "type": "WEB", "url": "https://seclists.org/bugtraq/2020/Feb/9" }, { "type": "WEB", "url": "https://security.gentoo.org/glsa/202007-05" }, { "type": "WEB", "url": "https://source.android.com/security/bulletin/android-10" }, { "type": "WEB", "url": "https://usn.ubuntu.com/4277-1" }, { "type": "WEB", "url": "https://www.debian.org/security/2020/dsa-4618" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00000.html" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00017.html" }, { "type": "WEB", "url": "http://www.openwall.com/lists/oss-security/2019/10/25/17" }, { "type": "WEB", "url": "http://www.openwall.com/lists/oss-security/2019/10/27/1" }, { "type": "WEB", "url": "http://www.openwall.com/lists/oss-security/2019/11/07/1" } ], "schema_version": "1.4.0", "severity": [ { "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "type": "CVSS_V3" } ] }
Loading…
Loading…
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.