ELSA-2020-1577

ELSA-2020-1577 - exiv2 security, bug fix, and enhancement update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2020-05-05

Description

exiv2
[0.27.2-5]
- Fix failing test
Resolves: bz#1800472

[0.27.2-4]
- Drop test for the previous CVE as we test it manually and we dont have POC available
Resolves: bz#1800472

[0.27.2-3]
- Fix infinite loop and hang in Jp2Image::readMetadata()
Resolves: bz#1800472

[0.27.2-2]
Rebuild
Resolves: bz#1651917

[0.27.2-1]
- Update to 0.27.2
Resolves: bz#1651917

gegl
[0.2.0-39]
- Build without exiv2
Resolves: bz#1767748

gnome-color-manager
[3.28.0-3]
- Rebuild again to correctly trigger side-tag gating (exiv2)
Resolves: bz#1757445

[3.28.0-2]
- Rebuild (exiv2)
Resolves: bz#1757445

libgexiv2
[0.10.8-4]
- Rebuild again to correctly trigger side-tag gating (exiv2)
Resolves: bz#1757444

[0.10.8-3]
- Rebuild (exiv2)
Resolves: bz#1757444

Related CVEs

CVE-2018-4868

CVE-2018-9304

CVE-2018-9303

CVE-2019-13113

CVE-2019-20421

CVE-2018-18915

CVE-2019-13109

CVE-2019-13114

CVE-2018-9305

CVE-2018-17230

CVE-2019-9143

CVE-2019-13111

CVE-2018-17282

CVE-2018-19535

CVE-2017-18005

CVE-2018-10772

CVE-2018-17229

CVE-2018-19107

CVE-2018-19607

CVE-2018-20096

CVE-2018-20098

CVE-2018-20099

CVE-2019-13112

CVE-2018-19108

CVE-2018-9306

CVE-2018-11037

CVE-2018-14338

CVE-2018-17581

CVE-2018-20097

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label
Oracle Linux 8 (aarch64)	exiv2-0.27.2-5.el8.src.rpm	7db166522afc18cf1030bec6e1edde339da54d965cbf8c960f60dba3d8d7604a	-	ol8_aarch64_appstream
	exiv2-0.27.2-5.el8.src.rpm	7db166522afc18cf1030bec6e1edde339da54d965cbf8c960f60dba3d8d7604a	-	ol8_aarch64_codeready_builder
	gegl-0.2.0-39.el8.src.rpm	23d246d20edfd98422e561458cf58977b0a3bdea308da6d9b637bc6917eedb43	-	ol8_aarch64_appstream
	gegl-0.2.0-39.el8.src.rpm	23d246d20edfd98422e561458cf58977b0a3bdea308da6d9b637bc6917eedb43	-	ol8_aarch64_appstream_developer
	libgexiv2-0.10.8-4.el8.src.rpm	5312c4d9be9faca9e8ab4a9faaf549c64f3fa372dc92954694c9188868b75bf7	-	ol8_aarch64_appstream
	libgexiv2-0.10.8-4.el8.src.rpm	5312c4d9be9faca9e8ab4a9faaf549c64f3fa372dc92954694c9188868b75bf7	-	ol8_aarch64_appstream_developer
	libgexiv2-0.10.8-4.el8.src.rpm	5312c4d9be9faca9e8ab4a9faaf549c64f3fa372dc92954694c9188868b75bf7	-	ol8_aarch64_codeready_builder
	libgexiv2-0.10.8-4.el8.src.rpm	5312c4d9be9faca9e8ab4a9faaf549c64f3fa372dc92954694c9188868b75bf7	-	ol8_aarch64_codeready_builder_developer
	exiv2-0.27.2-5.el8.aarch64.rpm	f01a98b65641d22e348ab16153de7034b29b585591eba3509cf2dfc88ee6499e	-	ol8_aarch64_appstream
	exiv2-devel-0.27.2-5.el8.aarch64.rpm	3085186de9e300b8e63fb12ea687100e181105366c8757b010c16b628e10ec1b	-	ol8_aarch64_codeready_builder
	exiv2-doc-0.27.2-5.el8.noarch.rpm	92be6832addcbc519f8acd1b7f5da5ed678dfa08bdfe16dc35d5dccff2e0cd05	-	ol8_aarch64_codeready_builder
	exiv2-libs-0.27.2-5.el8.aarch64.rpm	5607bfe9cbf8f30004c6ebeae76deb44f7875a9f4bc5fb40a00bfff790bc55fe	-	ol8_aarch64_appstream
	gegl-0.2.0-39.el8.aarch64.rpm	88f8a4405933194d7997397077a79ce17024194c53e5ec35c7e96e921b5aec82	-	ol8_aarch64_appstream
	gegl-0.2.0-39.el8.aarch64.rpm	88f8a4405933194d7997397077a79ce17024194c53e5ec35c7e96e921b5aec82	-	ol8_aarch64_appstream_developer
	libgexiv2-0.10.8-4.el8.aarch64.rpm	d4b6c35aca4ae10729040f4b597360225c6069a6ae0f2bb733f4c2dc2211118b	-	ol8_aarch64_appstream
	libgexiv2-0.10.8-4.el8.aarch64.rpm	d4b6c35aca4ae10729040f4b597360225c6069a6ae0f2bb733f4c2dc2211118b	-	ol8_aarch64_appstream_developer
	libgexiv2-devel-0.10.8-4.el8.aarch64.rpm	cfa5485845622a2f781599cda1d802bbc70cf24ba3777fdc3502119e723e334c	-	ol8_aarch64_codeready_builder
	libgexiv2-devel-0.10.8-4.el8.aarch64.rpm	cfa5485845622a2f781599cda1d802bbc70cf24ba3777fdc3502119e723e334c	-	ol8_aarch64_codeready_builder_developer
Oracle Linux 8 (x86_64)	exiv2-0.27.2-5.el8.src.rpm	7db166522afc18cf1030bec6e1edde339da54d965cbf8c960f60dba3d8d7604a	-	ol8_x86_64_appstream
	exiv2-0.27.2-5.el8.src.rpm	7db166522afc18cf1030bec6e1edde339da54d965cbf8c960f60dba3d8d7604a	-	ol8_x86_64_codeready_builder
	gegl-0.2.0-39.el8.src.rpm	23d246d20edfd98422e561458cf58977b0a3bdea308da6d9b637bc6917eedb43	-	ol8_x86_64_appstream
	gegl-0.2.0-39.el8.src.rpm	23d246d20edfd98422e561458cf58977b0a3bdea308da6d9b637bc6917eedb43	-	ol8_x86_64_appstream_developer
	gnome-color-manager-3.28.0-3.el8.src.rpm	169d6df7d8249a53107648c5433416a0b2d73cf3b66f7a6f43f4f2c9086fea52	-	ol8_x86_64_appstream
	gnome-color-manager-3.28.0-3.el8.src.rpm	169d6df7d8249a53107648c5433416a0b2d73cf3b66f7a6f43f4f2c9086fea52	-	ol8_x86_64_appstream_developer
	libgexiv2-0.10.8-4.el8.src.rpm	5312c4d9be9faca9e8ab4a9faaf549c64f3fa372dc92954694c9188868b75bf7	-	ol8_x86_64_appstream
	libgexiv2-0.10.8-4.el8.src.rpm	5312c4d9be9faca9e8ab4a9faaf549c64f3fa372dc92954694c9188868b75bf7	-	ol8_x86_64_appstream_developer
	libgexiv2-0.10.8-4.el8.src.rpm	5312c4d9be9faca9e8ab4a9faaf549c64f3fa372dc92954694c9188868b75bf7	-	ol8_x86_64_codeready_builder
	libgexiv2-0.10.8-4.el8.src.rpm	5312c4d9be9faca9e8ab4a9faaf549c64f3fa372dc92954694c9188868b75bf7	-	ol8_x86_64_codeready_builder_developer
	exiv2-0.27.2-5.el8.x86_64.rpm	5273834956da9254a30852b4be3e8ea1e23380bf96384824352439ae7c5dcaef	-	ol8_x86_64_appstream
	exiv2-devel-0.27.2-5.el8.i686.rpm	0b5ba3e99a34b2f0fdf632c94fce6a36e5880d42bf1de7421beeb9750d5bdd28	-	ol8_x86_64_codeready_builder
	exiv2-devel-0.27.2-5.el8.x86_64.rpm	fd3426fd7c300958b67aed290d0f760d95cc1edf77953c8bf32362d26cade3f1	-	ol8_x86_64_codeready_builder
	exiv2-doc-0.27.2-5.el8.noarch.rpm	92be6832addcbc519f8acd1b7f5da5ed678dfa08bdfe16dc35d5dccff2e0cd05	-	ol8_x86_64_codeready_builder
	exiv2-libs-0.27.2-5.el8.i686.rpm	da9bdeda14a49ae76099aebc19ea125a885a79c3d7113cbdb8a6b5b2b087e56c	-	ol8_x86_64_appstream
	exiv2-libs-0.27.2-5.el8.x86_64.rpm	dc45da30d74f57bf08d901272e656101d69e223e5f971b3f79d6a3f0ce0b5c59	-	ol8_x86_64_appstream
	gegl-0.2.0-39.el8.i686.rpm	f461276d040b3a031200ddebd3a26da73ebc9e1186b673d93301fdb02c6cc00f	-	ol8_x86_64_appstream
	gegl-0.2.0-39.el8.i686.rpm	f461276d040b3a031200ddebd3a26da73ebc9e1186b673d93301fdb02c6cc00f	-	ol8_x86_64_appstream_developer
	gegl-0.2.0-39.el8.x86_64.rpm	00aec43e0c4a10cfe89e0dde29d0f24780a32d17f392d24f0fa81b00754bc4c4	-	ol8_x86_64_appstream
	gegl-0.2.0-39.el8.x86_64.rpm	00aec43e0c4a10cfe89e0dde29d0f24780a32d17f392d24f0fa81b00754bc4c4	-	ol8_x86_64_appstream_developer
	gnome-color-manager-3.28.0-3.el8.x86_64.rpm	283306f96dd72505b0d9b0ef6e200d22c80c52371f328f107bab62c2ca4c4f40	-	ol8_x86_64_appstream
	gnome-color-manager-3.28.0-3.el8.x86_64.rpm	283306f96dd72505b0d9b0ef6e200d22c80c52371f328f107bab62c2ca4c4f40	-	ol8_x86_64_appstream_developer
	libgexiv2-0.10.8-4.el8.i686.rpm	aa2de195bb4d4024939d72233143d85079669c94d405115919531afee9a551e4	-	ol8_x86_64_appstream
	libgexiv2-0.10.8-4.el8.i686.rpm	aa2de195bb4d4024939d72233143d85079669c94d405115919531afee9a551e4	-	ol8_x86_64_appstream_developer
	libgexiv2-0.10.8-4.el8.x86_64.rpm	2ce4fdd722501bb8b133afb17da748e25c81e0158618ed7a95f9ff3e6c01f474	-	ol8_x86_64_appstream
	libgexiv2-0.10.8-4.el8.x86_64.rpm	2ce4fdd722501bb8b133afb17da748e25c81e0158618ed7a95f9ff3e6c01f474	-	ol8_x86_64_appstream_developer
	libgexiv2-devel-0.10.8-4.el8.i686.rpm	d480f2aa4e417457aec0ddd65998323548e69c32fe309904742e2ca8fb58ff06	-	ol8_x86_64_codeready_builder
	libgexiv2-devel-0.10.8-4.el8.i686.rpm	d480f2aa4e417457aec0ddd65998323548e69c32fe309904742e2ca8fb58ff06	-	ol8_x86_64_codeready_builder_developer
	libgexiv2-devel-0.10.8-4.el8.x86_64.rpm	e2428dae02b55acfe4863a18ca8b2ea611517d6f4aa33b21341a218fdae07157	-	ol8_x86_64_codeready_builder
	libgexiv2-devel-0.10.8-4.el8.x86_64.rpm	e2428dae02b55acfe4863a18ca8b2ea611517d6f4aa33b21341a218fdae07157	-	ol8_x86_64_codeready_builder_developer

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team