Vulnerability Database
Blog
FAQ
Docs
RHSA-2020:1577
See a problem?
Please try reporting it
to the source
first.
Source
https://access.redhat.com/errata/RHSA-2020:1577
Import Source
https://security.access.redhat.com/data/osv/RHSA-2020:1577.json
JSON Data
https://api.test.osv.dev/v1/vulns/RHSA-2020:1577
Related
CVE-2017-18005
CVE-2018-10772
CVE-2018-11037
CVE-2018-14338
CVE-2018-17229
CVE-2018-17230
CVE-2018-17282
CVE-2018-17581
CVE-2018-18915
CVE-2018-19107
CVE-2018-19108
CVE-2018-19535
CVE-2018-19607
CVE-2018-20096
CVE-2018-20097
CVE-2018-20098
CVE-2018-20099
CVE-2018-4868
CVE-2018-9303
CVE-2018-9304
CVE-2018-9305
CVE-2018-9306
CVE-2019-13109
CVE-2019-13111
CVE-2019-13112
CVE-2019-13113
CVE-2019-13114
CVE-2019-20421
CVE-2019-9143
Published
2024-09-16T02:58:35Z
Modified
2024-12-03T10:01:09Z
Severity
7.5 (High)
CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CVSS Calculator
Summary
Red Hat Security Advisory: exiv2 security, bug fix, and enhancement update
Details
References
https://access.redhat.com/errata/RHSA-2020:1577
https://access.redhat.com/security/updates/classification/#moderate
https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.2_release_notes/index
https://bugzilla.redhat.com/show_bug.cgi?id=1531171
https://bugzilla.redhat.com/show_bug.cgi?id=1531724
https://bugzilla.redhat.com/show_bug.cgi?id=1566725
https://bugzilla.redhat.com/show_bug.cgi?id=1566731
https://bugzilla.redhat.com/show_bug.cgi?id=1566735
https://bugzilla.redhat.com/show_bug.cgi?id=1566737
https://bugzilla.redhat.com/show_bug.cgi?id=1579544
https://bugzilla.redhat.com/show_bug.cgi?id=1594627
https://bugzilla.redhat.com/show_bug.cgi?id=1609396
https://bugzilla.redhat.com/show_bug.cgi?id=1632481
https://bugzilla.redhat.com/show_bug.cgi?id=1632484
https://bugzilla.redhat.com/show_bug.cgi?id=1632490
https://bugzilla.redhat.com/show_bug.cgi?id=1635045
https://bugzilla.redhat.com/show_bug.cgi?id=1646555
https://bugzilla.redhat.com/show_bug.cgi?id=1649094
https://bugzilla.redhat.com/show_bug.cgi?id=1649101
https://bugzilla.redhat.com/show_bug.cgi?id=1651917
https://bugzilla.redhat.com/show_bug.cgi?id=1656187
https://bugzilla.redhat.com/show_bug.cgi?id=1656195
https://bugzilla.redhat.com/show_bug.cgi?id=1660423
https://bugzilla.redhat.com/show_bug.cgi?id=1660424
https://bugzilla.redhat.com/show_bug.cgi?id=1660425
https://bugzilla.redhat.com/show_bug.cgi?id=1660426
https://bugzilla.redhat.com/show_bug.cgi?id=1684381
https://bugzilla.redhat.com/show_bug.cgi?id=1728484
https://bugzilla.redhat.com/show_bug.cgi?id=1728488
https://bugzilla.redhat.com/show_bug.cgi?id=1728490
https://bugzilla.redhat.com/show_bug.cgi?id=1728492
https://bugzilla.redhat.com/show_bug.cgi?id=1728494
https://bugzilla.redhat.com/show_bug.cgi?id=1757444
https://bugzilla.redhat.com/show_bug.cgi?id=1757445
https://bugzilla.redhat.com/show_bug.cgi?id=1767748
https://bugzilla.redhat.com/show_bug.cgi?id=1800472
https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_1577.json
https://access.redhat.com/security/cve/CVE-2017-18005
https://www.cve.org/CVERecord?id=CVE-2017-18005
https://nvd.nist.gov/vuln/detail/CVE-2017-18005
https://access.redhat.com/security/cve/CVE-2018-4868
https://www.cve.org/CVERecord?id=CVE-2018-4868
https://nvd.nist.gov/vuln/detail/CVE-2018-4868
https://access.redhat.com/security/cve/CVE-2018-9303
https://www.cve.org/CVERecord?id=CVE-2018-9303
https://nvd.nist.gov/vuln/detail/CVE-2018-9303
https://access.redhat.com/security/cve/CVE-2018-9304
https://www.cve.org/CVERecord?id=CVE-2018-9304
https://nvd.nist.gov/vuln/detail/CVE-2018-9304
https://access.redhat.com/security/cve/CVE-2018-9305
https://www.cve.org/CVERecord?id=CVE-2018-9305
https://nvd.nist.gov/vuln/detail/CVE-2018-9305
https://access.redhat.com/security/cve/CVE-2018-9306
https://www.cve.org/CVERecord?id=CVE-2018-9306
https://nvd.nist.gov/vuln/detail/CVE-2018-9306
https://access.redhat.com/security/cve/CVE-2018-10772
https://www.cve.org/CVERecord?id=CVE-2018-10772
https://nvd.nist.gov/vuln/detail/CVE-2018-10772
https://access.redhat.com/security/cve/CVE-2018-11037
https://www.cve.org/CVERecord?id=CVE-2018-11037
https://nvd.nist.gov/vuln/detail/CVE-2018-11037
https://access.redhat.com/security/cve/CVE-2018-14338
https://www.cve.org/CVERecord?id=CVE-2018-14338
https://nvd.nist.gov/vuln/detail/CVE-2018-14338
https://access.redhat.com/security/cve/CVE-2018-17229
https://www.cve.org/CVERecord?id=CVE-2018-17229
https://nvd.nist.gov/vuln/detail/CVE-2018-17229
https://access.redhat.com/security/cve/CVE-2018-17230
https://www.cve.org/CVERecord?id=CVE-2018-17230
https://nvd.nist.gov/vuln/detail/CVE-2018-17230
https://access.redhat.com/security/cve/CVE-2018-17282
https://www.cve.org/CVERecord?id=CVE-2018-17282
https://nvd.nist.gov/vuln/detail/CVE-2018-17282
https://access.redhat.com/security/cve/CVE-2018-17581
https://www.cve.org/CVERecord?id=CVE-2018-17581
https://nvd.nist.gov/vuln/detail/CVE-2018-17581
https://access.redhat.com/security/cve/CVE-2018-18915
https://www.cve.org/CVERecord?id=CVE-2018-18915
https://nvd.nist.gov/vuln/detail/CVE-2018-18915
https://access.redhat.com/security/cve/CVE-2018-19107
https://www.cve.org/CVERecord?id=CVE-2018-19107
https://nvd.nist.gov/vuln/detail/CVE-2018-19107
https://access.redhat.com/security/cve/CVE-2018-19108
https://www.cve.org/CVERecord?id=CVE-2018-19108
https://nvd.nist.gov/vuln/detail/CVE-2018-19108
https://access.redhat.com/security/cve/CVE-2018-19535
https://www.cve.org/CVERecord?id=CVE-2018-19535
https://nvd.nist.gov/vuln/detail/CVE-2018-19535
https://access.redhat.com/security/cve/CVE-2018-19607
https://www.cve.org/CVERecord?id=CVE-2018-19607
https://nvd.nist.gov/vuln/detail/CVE-2018-19607
https://access.redhat.com/security/cve/CVE-2018-20096
https://www.cve.org/CVERecord?id=CVE-2018-20096
https://nvd.nist.gov/vuln/detail/CVE-2018-20096
https://access.redhat.com/security/cve/CVE-2018-20097
https://www.cve.org/CVERecord?id=CVE-2018-20097
https://nvd.nist.gov/vuln/detail/CVE-2018-20097
https://access.redhat.com/security/cve/CVE-2018-20098
https://www.cve.org/CVERecord?id=CVE-2018-20098
https://nvd.nist.gov/vuln/detail/CVE-2018-20098
https://access.redhat.com/security/cve/CVE-2018-20099
https://www.cve.org/CVERecord?id=CVE-2018-20099
https://nvd.nist.gov/vuln/detail/CVE-2018-20099
https://access.redhat.com/security/cve/CVE-2019-9143
https://www.cve.org/CVERecord?id=CVE-2019-9143
https://nvd.nist.gov/vuln/detail/CVE-2019-9143
https://access.redhat.com/security/cve/CVE-2019-13109
https://www.cve.org/CVERecord?id=CVE-2019-13109
https://nvd.nist.gov/vuln/detail/CVE-2019-13109
https://access.redhat.com/security/cve/CVE-2019-13111
https://www.cve.org/CVERecord?id=CVE-2019-13111
https://nvd.nist.gov/vuln/detail/CVE-2019-13111
https://access.redhat.com/security/cve/CVE-2019-13112
https://www.cve.org/CVERecord?id=CVE-2019-13112
https://nvd.nist.gov/vuln/detail/CVE-2019-13112
https://access.redhat.com/security/cve/CVE-2019-13113
https://www.cve.org/CVERecord?id=CVE-2019-13113
https://nvd.nist.gov/vuln/detail/CVE-2019-13113
https://access.redhat.com/security/cve/CVE-2019-13114
https://www.cve.org/CVERecord?id=CVE-2019-13114
https://nvd.nist.gov/vuln/detail/CVE-2019-13114
https://access.redhat.com/security/cve/CVE-2019-20421
https://www.cve.org/CVERecord?id=CVE-2019-20421
https://nvd.nist.gov/vuln/detail/CVE-2019-20421
Affected packages
Red Hat:enterprise_linux:8::appstream
/
exiv2
Package
Name
exiv2
Purl
pkg:rpm/redhat/exiv2
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.27.2-5.el8
Red Hat:enterprise_linux:8::appstream
/
exiv2-debuginfo
Package
Name
exiv2-debuginfo
Purl
pkg:rpm/redhat/exiv2-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.27.2-5.el8
Red Hat:enterprise_linux:8::appstream
/
exiv2-debugsource
Package
Name
exiv2-debugsource
Purl
pkg:rpm/redhat/exiv2-debugsource
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.27.2-5.el8
Red Hat:enterprise_linux:8::appstream
/
exiv2-devel
Package
Name
exiv2-devel
Purl
pkg:rpm/redhat/exiv2-devel
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.27.2-5.el8
Red Hat:enterprise_linux:8::appstream
/
exiv2-doc
Package
Name
exiv2-doc
Purl
pkg:rpm/redhat/exiv2-doc
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.27.2-5.el8
Red Hat:enterprise_linux:8::appstream
/
exiv2-libs
Package
Name
exiv2-libs
Purl
pkg:rpm/redhat/exiv2-libs
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.27.2-5.el8
Red Hat:enterprise_linux:8::appstream
/
exiv2-libs-debuginfo
Package
Name
exiv2-libs-debuginfo
Purl
pkg:rpm/redhat/exiv2-libs-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.27.2-5.el8
Red Hat:enterprise_linux:8::appstream
/
gegl
Package
Name
gegl
Purl
pkg:rpm/redhat/gegl
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.2.0-39.el8
Red Hat:enterprise_linux:8::appstream
/
gegl-debuginfo
Package
Name
gegl-debuginfo
Purl
pkg:rpm/redhat/gegl-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.2.0-39.el8
Red Hat:enterprise_linux:8::appstream
/
gegl-debugsource
Package
Name
gegl-debugsource
Purl
pkg:rpm/redhat/gegl-debugsource
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.2.0-39.el8
Red Hat:enterprise_linux:8::appstream
/
gnome-color-manager
Package
Name
gnome-color-manager
Purl
pkg:rpm/redhat/gnome-color-manager
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.28.0-3.el8
Red Hat:enterprise_linux:8::appstream
/
gnome-color-manager-debuginfo
Package
Name
gnome-color-manager-debuginfo
Purl
pkg:rpm/redhat/gnome-color-manager-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.28.0-3.el8
Red Hat:enterprise_linux:8::appstream
/
gnome-color-manager-debugsource
Package
Name
gnome-color-manager-debugsource
Purl
pkg:rpm/redhat/gnome-color-manager-debugsource
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.28.0-3.el8
Red Hat:enterprise_linux:8::appstream
/
libgexiv2
Package
Name
libgexiv2
Purl
pkg:rpm/redhat/libgexiv2
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.10.8-4.el8
Red Hat:enterprise_linux:8::appstream
/
libgexiv2-debuginfo
Package
Name
libgexiv2-debuginfo
Purl
pkg:rpm/redhat/libgexiv2-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.10.8-4.el8
Red Hat:enterprise_linux:8::appstream
/
libgexiv2-debugsource
Package
Name
libgexiv2-debugsource
Purl
pkg:rpm/redhat/libgexiv2-debugsource
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.10.8-4.el8
Red Hat:enterprise_linux:8::appstream
/
libgexiv2-devel
Package
Name
libgexiv2-devel
Purl
pkg:rpm/redhat/libgexiv2-devel
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.10.8-4.el8
Red Hat:enterprise_linux:8::crb
/
exiv2
Package
Name
exiv2
Purl
pkg:rpm/redhat/exiv2
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.27.2-5.el8
Red Hat:enterprise_linux:8::crb
/
exiv2-debuginfo
Package
Name
exiv2-debuginfo
Purl
pkg:rpm/redhat/exiv2-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.27.2-5.el8
Red Hat:enterprise_linux:8::crb
/
exiv2-debugsource
Package
Name
exiv2-debugsource
Purl
pkg:rpm/redhat/exiv2-debugsource
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.27.2-5.el8
Red Hat:enterprise_linux:8::crb
/
exiv2-devel
Package
Name
exiv2-devel
Purl
pkg:rpm/redhat/exiv2-devel
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.27.2-5.el8
Red Hat:enterprise_linux:8::crb
/
exiv2-doc
Package
Name
exiv2-doc
Purl
pkg:rpm/redhat/exiv2-doc
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.27.2-5.el8
Red Hat:enterprise_linux:8::crb
/
exiv2-libs
Package
Name
exiv2-libs
Purl
pkg:rpm/redhat/exiv2-libs
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.27.2-5.el8
Red Hat:enterprise_linux:8::crb
/
exiv2-libs-debuginfo
Package
Name
exiv2-libs-debuginfo
Purl
pkg:rpm/redhat/exiv2-libs-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.27.2-5.el8
Red Hat:enterprise_linux:8::crb
/
libgexiv2
Package
Name
libgexiv2
Purl
pkg:rpm/redhat/libgexiv2
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.10.8-4.el8
Red Hat:enterprise_linux:8::crb
/
libgexiv2-debuginfo
Package
Name
libgexiv2-debuginfo
Purl
pkg:rpm/redhat/libgexiv2-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.10.8-4.el8
Red Hat:enterprise_linux:8::crb
/
libgexiv2-debugsource
Package
Name
libgexiv2-debugsource
Purl
pkg:rpm/redhat/libgexiv2-debugsource
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.10.8-4.el8
Red Hat:enterprise_linux:8::crb
/
libgexiv2-devel
Package
Name
libgexiv2-devel
Purl
pkg:rpm/redhat/libgexiv2-devel
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.10.8-4.el8
RHSA-2020:1577 - OSV