CVE-2021-32617
Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An inefficient algorithm (quadratic complexity) was found in Exiv2 versions v0.27.3 and earlier. The inefficient algorithm is triggered when Exiv2 is used to write metadata into a crafted image file. An attacker could potentially exploit the vulnerability to cause a denial of service, if they can trick the victim into running Exiv2 on a crafted image file. The bug is fixed in version v0.27.4. Note that this bug is only triggered when _writing_ the metadata, which is a less frequently used Exiv2 operation than _reading_ the metadata. For example, to trigger the bug in the Exiv2 command-line application, you need to add an extra command-line argument such as `rm`.
EPSS 0.08% · 22.8th percentile
Risk Scores
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:Pro:16.04:LTS | exiv2 | 0.25-1ubuntu1, 0.25-2.1, 0.25-2.1ubuntu16.04.1 |
| Ubuntu:18.04:LTS | exiv2 | 0, 0.25-3.1, 0.25-3.1ubuntu0.18.04.3 |
| Ubuntu:20.04:LTS | exiv2 | 0, 0.25-4ubuntu3, 0.27.2-8ubuntu2 |
Timeline
- May 17, 2021 CVE Published
- May 18, 2021 EPSS Score
- Jun 2, 2021 EPSS Score
- Jun 4, 2021 EPSS Score
- Jul 21, 2021 EPSS Score
- Sep 20, 2021 EPSS Score
- Nov 21, 2021 EPSS Score
- Jan 6, 2022 EPSS Score
- Feb 4, 2022 EPSS Score
- Mar 24, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- May 24, 2022 EPSS Score
References
- https://ubuntu.com/security/CVE-2021-32617 third-party-advisory
- https://github.com/Exiv2/exiv2/security/advisories/GHSA-w8mv-g8qq-36mj third-party-advisory
- https://github.com/Exiv2/exiv2/pull/1657 third-party-advisory
- https://ubuntu.com/security/notices/USN-4964-1 vendor-advisory
- https://www.cve.org/CVERecord?id=CVE-2021-32617 third-party-advisory