Security update for exiv2-0_26

Announcement ID:	SUSE-SU-2022:4208-1
Rating:	important
References:	bsc#1050257 bsc#1095070 bsc#1110282 bsc#1119559 bsc#1119560 bsc#1119562 bsc#1142677 bsc#1142678 bsc#1153577 bsc#1186231 bsc#1189337
Cross-References:	CVE-2017-11591 CVE-2018-11531 CVE-2018-17581 CVE-2018-20097 CVE-2018-20098 CVE-2018-20099 CVE-2019-13109 CVE-2019-13110 CVE-2019-17402 CVE-2021-29473 CVE-2021-32815
CVSS scores:	CVE-2017-11591 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2017-11591 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2017-11591 ( NVD ): 7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2018-11531 ( SUSE ): 5.3 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L CVE-2018-11531 ( NVD ): 9.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2018-17581 ( SUSE ): 3.3 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2018-17581 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2018-17581 ( NVD ): 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2018-20097 ( SUSE ): 4.0 CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2018-20097 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2018-20097 ( NVD ): 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2018-20098 ( SUSE ): 4.0 CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2018-20098 ( NVD ): 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2018-20099 ( SUSE ): 4.0 CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2018-20099 ( NVD ): 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-13109 ( SUSE ): 4.3 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2019-13109 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-13109 ( NVD ): 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-13110 ( SUSE ): 4.3 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2019-13110 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-13110 ( NVD ): 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-17402 ( SUSE ): 3.3 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2019-17402 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-29473 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-29473 ( NVD ): 2.5 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2021-32815 ( SUSE ): 3.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2021-32815 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Affected Products:	Desktop Applications Module 15-SP4 openSUSE Leap 15.4 SUSE Linux Enterprise Desktop 15 SP4 SUSE Linux Enterprise High Performance Computing 15 SP4 SUSE Linux Enterprise Real Time 15 SP4 SUSE Linux Enterprise Server 15 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SP4 SUSE Manager Proxy 4.3 SUSE Manager Retail Branch Server 4.3 SUSE Manager Server 4.3

An update that solves 11 vulnerabilities can now be installed.

Description:

This update for exiv2-0_26 fixes the following issues:

• CVE-2019-17402: Fixed improper validation of the total size to the offset and size leads to a crash in Exiv2::getULong in types.cpp (bsc#1153577).
• CVE-2018-20098: Fixed a heap-based buffer over-read in Exiv2::Jp2Image::encodeJp2Header (bsc#1119560).
• CVE-2018-17581: Fixed an excessive stack consumption CiffDirectory:readDirectory() at crwimage_int.cpp (bsc#1110282).
• CVE-2018-20099: exiv2: infinite loop in Exiv2::Jp2Image::encodeJp2Header (bsc#1119559).
• CVE-2018-20097: Fixed SEGV in Exiv2::Internal::TiffParserWorker::findPrimaryGroupsu (bsc#1119562).
• CVE-2017-11591: Fixed a floating point exception in Exiv2::ValueType (bsc#1050257).
• CVE-2018-11531: Fixed a heap-based buffer overflow in getData in preview.cpp (bsc#1095070).
• CVE-2021-32815: Fixed a deny-of-service due to assertion failure in crwimage_int.cpp (bsc#1189337).
• CVE-2021-29473: Fixed out-of-bounds read in Exiv2::Jp2Image:doWriteMetadata (bsc#1186231).
• CVE-2019-13109: Fixed a denial of service in PngImage:readMetadata (bsc#1142677).
• CVE-2019-13110: Fixed an integer-overflow and out-of-bounds read in CiffDirectory:readDirectory leads to denail of service (bsc#1142678).

Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

• openSUSE Leap 15.4
  zypper in -t patch openSUSE-SLE-15.4-2022-4208=1
• Desktop Applications Module 15-SP4
  zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP4-2022-4208=1

Package List:

• openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64)
  • libexiv2-26-debuginfo-0.26-150400.9.21.1
  • libexiv2-26-0.26-150400.9.21.1
• openSUSE Leap 15.4 (x86_64)
  • libexiv2-26-32bit-0.26-150400.9.21.1
  • libexiv2-26-32bit-debuginfo-0.26-150400.9.21.1
• Desktop Applications Module 15-SP4 (aarch64 ppc64le s390x x86_64)
  • libexiv2-26-debuginfo-0.26-150400.9.21.1
  • libexiv2-26-0.26-150400.9.21.1

References:

• https://www.suse.com/security/cve/CVE-2017-11591.html
• https://www.suse.com/security/cve/CVE-2018-11531.html
• https://www.suse.com/security/cve/CVE-2018-17581.html
• https://www.suse.com/security/cve/CVE-2018-20097.html
• https://www.suse.com/security/cve/CVE-2018-20098.html
• https://www.suse.com/security/cve/CVE-2018-20099.html
• https://www.suse.com/security/cve/CVE-2019-13109.html
• https://www.suse.com/security/cve/CVE-2019-13110.html
• https://www.suse.com/security/cve/CVE-2019-17402.html
• https://www.suse.com/security/cve/CVE-2021-29473.html
• https://www.suse.com/security/cve/CVE-2021-32815.html
• https://bugzilla.suse.com/show_bug.cgi?id=1050257
• https://bugzilla.suse.com/show_bug.cgi?id=1095070
• https://bugzilla.suse.com/show_bug.cgi?id=1110282
• https://bugzilla.suse.com/show_bug.cgi?id=1119559
• https://bugzilla.suse.com/show_bug.cgi?id=1119560
• https://bugzilla.suse.com/show_bug.cgi?id=1119562
• https://bugzilla.suse.com/show_bug.cgi?id=1142677
• https://bugzilla.suse.com/show_bug.cgi?id=1142678
• https://bugzilla.suse.com/show_bug.cgi?id=1153577
• https://bugzilla.suse.com/show_bug.cgi?id=1186231
• https://bugzilla.suse.com/show_bug.cgi?id=1189337