GCVE-VVD-MAGEIA-2020-196 — Vulnetix

GCVE-VVD-MAGEIA-2020-196

Advisory Published

Vulnetix · Advisory published September 2, 2020

The updated packages fix a security vulnerability: A WebPImage::decodeChunks integer overflow in Exiv2 through 0.27.1 allows an attacker to cause a denial of service (large heap allocation followed by a very long running loop) via a crafted WEBP image file. (CVE-2019-13111)

Download JSON Open in Console

Affected Products

Vendor	Product	Versions	Platforms
Mageia	exiv2	0 (affected), 0.27.1-3.4.mga7 (unaffected), 0 (affected), 0.27.1-3.4.mga7 (unaffected)	—
Mageia	clamtk	0 (affected), 6.01-1.2.mga7 (unaffected)	—

Aliases

Transitive aliases

CVE-2019-9143 BDU:2020-02398 GHSA-pvvg-cg5r-2q8v GHSA-m3fr-3g6g-rc8x PYSEC-2019-246 GSD-2019-14368 CVE-2018-17230 GSD-2018-14338 EUVD-2018-0059 GHSA-p4gw-2vrq-j64q BDU:2023-05469 GHSA-mv4f-jcrp-vghh BDU:2021-01492 CVE-2019-14369 CVE-2019-13110 BDU:2023-01656 GSD-2019-14370 EUVD-2019-4651 CVE-2018-9306 PYSEC-2018-144 EUVD-2017-0055 EUVD-2019-0051 CVE-2018-14338 CVE-2019-20421 CVE-2019-13113 PYSEC-2018-137 PYSEC-2018-134 EUVD-2018-20897 GHSA-6cf5-9vcc-r289 EUVD-2020-0077 GSD-2018-4868 CVE-2019-14370 PYSEC-2019-245 PYSEC-2019-244 GHSA-766f-8g6j-2m24 ALSA-2020:1577 GHSA-78r6-w4c8-vpmp MSRC_CVE-2019-20421 GHSA-4256-mfgg-45jq CNVD-2019-32254 PYSEC-2018-136 CNVD-2018-19609 BDU:2023-01645 CVE-2018-9303 CVE-2019-13114 GHSA-vcrp-2wmj-jrg8 PYSEC-2020-344 EUVD-2019-0053 GHSA-6f7h-8q6h-fvcx CVE-2019-13109 CVE-2018-17229 GHSA-crvf-2mp8-85gm EUVD-2019-4650 CNVD-2019-34612 GHSA-x4fr-qpcc-rhww EUVD-2019-4653 GSD-2019-9143 BDU:2020-02399 EUVD-2019-4654 GHSA-824g-h3q7-mx9v EUVD-2019-4649 CVE-2018-4868 EUVD-2018-20900 PYSEC-2019-248 GHSA-8x93-7gj9-73c3 PYSEC-2017-141 CVE-2019-14368 CVE-2019-13108 CVE-2018-9304 GHSA-5w5r-cgx2-jf78 EUVD-2018-0061 GSD-2017-18005 EUVD-2019-0050 CNVD-2019-24854 GHSA-f8xc-4q5g-48f2 EUVD-2018-0062 GSD-2019-20421 VVD-GENTOO-2019-701902 GHSA-798v-99wc-4f26 GSD-2018-17229 CNVD-2019-24853 BDU:2020-02397 GSD-2018-17230 CNVD-2018-19608 VVD-MAGEIA-2020-84 VVD-MAGEIA-2019-415 BDU:2020-02400 EUVD-2018-0069 GHSA-hmv7-h8ff-46mm EUVD-2019-4652 EUVD-2018-20898 CNVD-2018-02169 BDU:2023-01660 EUVD-2019-0049 CVE-2019-13112 CVE-2017-18005 EUVD-2019-4655 GHSA-7jp6-64vf-6wq3 CNVD-2018-03077 GSD-2019-14369

References

Updated exiv2 packages fix security vulnerability

advisory

Updated exiv2 packages fix security vulnerability

advisory

Updated exiv2 packages fix security vulnerability

issue

Updated clamtk package fixes missing icons

advisory

Updated clamtk package fixes missing icons

issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON

$ Console Community · 100/wk Open console ›