CVE-2021-29463

LOW

Exiv2 < 0.27.4 - Out-of-Bounds Read

Title source: rule

Description

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2 versions v0.27.3 and earlier. The out-of-bounds read is triggered when Exiv2 is used to write metadata into a crafted image file. An attacker could potentially exploit the vulnerability to cause a denial of service by crashing Exiv2, if they can trick the victim into running Exiv2 on a crafted image file. Note that this bug is only triggered when writing the metadata, which is a less frequently used Exiv2 operation than reading the metadata. For example, to trigger the bug in the Exiv2 command-line application, you need to add an extra command-line argument such as `insert`. The bug is fixed in version v0.27.4.

References (5)

Core 5

Core References

Mailing List, Third Party Advisory vendor-advisory

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NDMZTVQAZSMLPTDVDYLBHAAF7I5QXVYQ/

Mailing List, Third Party Advisory vendor-advisory

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/K3HKXR6JOVKMBE4HY4FDXNVZGNCQG6T3/

Patch, Third Party Advisory

https://github.com/Exiv2/exiv2/commit/783b3a6ff15ed6f82a8f8e6c8a6f3b84a9b04d4b

View Patch ZIP pw:eip

Third Party Advisory

https://github.com/Exiv2/exiv2/security/advisories/GHSA-5p8g-9xf3-gfrr

Third Party Advisory vendor-advisory

https://security.gentoo.org/glsa/202312-06

Scores

CVSS v3 3.3

EPSS 0.0010

EPSS Percentile 27.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-125

Status published

Products (3)

exiv2/exiv2 < 0.27.4

fedoraproject/fedora 33

fedoraproject/fedora 34

Published Apr 30, 2021

Tracked Since Feb 18, 2026