CVE-2019-13504 (retired)

Priority
Description
There is an out-of-bounds read in Exiv2::MrwImage::readMetadata in
mrwimage.cpp in Exiv2 through 0.27.2.
Notes
leosilvavulnerability introduced by https://github.com/Exiv2/exiv2/commit/c72d16f4c402a8acc2dfe06fe3d58bf6cf99069e
Package
Source: exiv2 (LP Ubuntu Debian)
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.04 LTS (Xenial Xerus):not-affected
Ubuntu 18.04 LTS (Bionic Beaver):not-affected
Ubuntu 19.04 (Disco Dingo):not-affected
Ubuntu 19.10 (Eoan):not-affected
Patches:
Upstream:https://github.com/Exiv2/exiv2/commit/bd0afe0390439b2c424d881c8c6eb0c5624e31d9
More Information

Updated: 2019-10-17 13:15:20 UTC (commit d5cc65dd04f1632704c824642d4bd26e0f7bee7d)