[Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2025-55304/exiv2: introductory commit

Sylvain Beucler (@beuc) gitlab at salsa.debian.org
Mon Mar 23 10:04:11 GMT 2026 


Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker


Commits:
dd58a535 by Sylvain Beucler at 2026-03-23T11:03:58+01:00
CVE-2025-55304/exiv2: introductory commit

Quoting apo:
    The vulnerable Icc parsing code was introduced around 2016 starting with commit

    https://github.com/Exiv2/exiv2/commit/06eabfdd889edbb7a9eee0e644db3f3ba0076b58

    while the version in stretch and buster dates from 2015.

- - - - -
419df56c by Sylvain Beucler at 2026-03-23T11:03:58+01:00
CVE-2026-25884,CVE-2026-27596,CVE-2026-27631/exiv2: bullseye postponed

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -9262,6 +9262,7 @@ CVE-2026-28286 (ZimaOS is a fork of CasaOS, an operating system for Zima devices
 	NOT-FOR-US: ZimaOS
 CVE-2026-27631 (Exiv2 is a C++ library and a command-line utility to read, write, dele ...)
 	- exiv2 0.28.8+dfsg-1
+	[bullseye] - exiv2 <postponed> (Minor issue, OOB read / DoS)
 	NOTE: https://github.com/Exiv2/exiv2/security/advisories/GHSA-p2pw-7935-c73j
 	NOTE: https://github.com/Exiv2/exiv2/issues/3513
 	NOTE: https://github.com/Exiv2/exiv2/pull/3514
@@ -9269,6 +9270,7 @@ CVE-2026-27631 (Exiv2 is a C++ library and a command-line utility to read, write
 	NOTE: Fixed by: https://github.com/Exiv2/exiv2/commit/21d129c842212c198dd887dbaafc5ce734e9dfad (v0.28.8)
 CVE-2026-27596 (Exiv2 is a C++ library and a command-line utility to read, write, dele ...)
 	- exiv2 0.28.8+dfsg-1
+	[bullseye] - exiv2 <postponed> (Minor issue, OOB read / DoS)
 	NOTE: https://github.com/Exiv2/exiv2/security/advisories/GHSA-3wgv-fg4w-75x7
 	NOTE: https://github.com/Exiv2/exiv2/issues/3511
 	NOTE: https://github.com/Exiv2/exiv2/pull/3512
@@ -9318,6 +9320,7 @@ CVE-2026-26694 (code-projects Simple Student Alumni System v1.0 is vulnerale to
 	NOT-FOR-US: code-projects
 CVE-2026-25884 (Exiv2 is a C++ library and a command-line utility to read, write, dele ...)
 	- exiv2 0.28.8+dfsg-1
+	[bullseye] - exiv2 <postponed> (Minor issue, OOB read)
 	NOTE: https://github.com/Exiv2/exiv2/security/advisories/GHSA-9mxq-4j5g-5wrp
 	NOTE: https://github.com/Exiv2/exiv2/pull/3462
 	NOTE: Testcase: https://github.com/Exiv2/exiv2/commit/191138fef73f331de1311e735d8e6359a36fa786 (v0.28.8)
@@ -80723,13 +80726,14 @@ CVE-2025-55304 (Exiv2 is a C++ library and a command-line utility to read, write
 	- exiv2 0.28.7+dfsg-2 (bug #1112506)
 	[trixie] - exiv2 <no-dsa> (Minor issue)
 	[bookworm] - exiv2 <no-dsa> (Minor issue)
-	[bullseye] - exiv2 <postponed> (minor issue)
+	[bullseye] - exiv2 <postponed> (Minor issue, CPU DoS)
 	NOTE: https://github.com/Exiv2/exiv2/security/advisories/GHSA-m54q-mm9w-fp6g
 	NOTE: https://github.com/Exiv2/exiv2/issues/3333
 	NOTE: https://github.com/Exiv2/exiv2/pull/3335 (main)
 	NOTE: https://github.com/Exiv2/exiv2/pull/3345 (0.28.x branch)
 	NOTE: https://github.com/Exiv2/exiv2/commit/e5bf22e0cebeabeb2ffd40678344467a271be12d (v0.28.6)
 	NOTE: https://github.com/Exiv2/exiv2/commit/b7f153f0c0c2d61f97de9de474b57b1176214225 (v0.28.6)
+	NOTE: Introduced by: https://github.com/Exiv2/exiv2/commit/06eabfdd889edbb7a9eee0e644db3f3ba0076b58 (0.27-RC2)
 CVE-2025-55202 (Opencast is a free, open-source platform to support the management of  ...)
 	NOT-FOR-US: Opencast
 CVE-2025-55177 (Incomplete authorization of linked device synchronization messages in  ...)
@@ -80741,7 +80745,7 @@ CVE-2025-54080 (Exiv2 is a C++ library and a command-line utility to read, write
 	- exiv2 0.28.7+dfsg-2 (bug #1112505)
 	[trixie] - exiv2 <no-dsa> (Minor issue)
 	[bookworm] - exiv2 <no-dsa> (Minor issue)
-	[bullseye] - exiv2 <postponed> (minor issue; out of bound read on write plugin)
+	[bullseye] - exiv2 <postponed> (Minor issue; out of bound read on write plugin)
 	NOTE: https://github.com/Exiv2/exiv2/security/advisories/GHSA-496f-x7cq-cq39
 	NOTE: Regression test: https://github.com/Exiv2/exiv2/commit/f2345de0ce74e4c2103a5d48d3c6f90545ecaa56 (v0.28.6)
 	NOTE: Fixed by: https://github.com/Exiv2/exiv2/commit/f02c970ae56e6e377f7f79ba9e8edb5f2d23f48d (v0.28.6)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/b4447d54f8e406a4f8a4e5c6ee69c9f7c08d668e...419df56cd8150b0b714402105426c429e4122cb1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/b4447d54f8e406a4f8a4e5c6ee69c9f7c08d668e...419df56cd8150b0b714402105426c429e4122cb1
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260323/ffb592a3/attachment.htm>

More information about the debian-security-tracker-commits mailing list