CVE-2019-9278

Name
CVE-2019-9278
Description
In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media content provider with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112537774
NVD Severity
high
Other trackers
Mailing lists
Exploits
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
Vendor Advisory https://source.android.com/security/bulletin/android-10
MLIST http://www.openwall.com/lists/oss-security/2019/10/25/17
MLIST http://www.openwall.com/lists/oss-security/2019/10/27/1
MLIST http://www.openwall.com/lists/oss-security/2019/11/07/1
DEBIAN https://www.debian.org/security/2020/dsa-4618
MLIST https://lists.debian.org/debian-lts-announce/2020/02/msg00007.html
BUGTRAQ https://seclists.org/bugtraq/2020/Feb/9
CONFIRM https://github.com/libexif/libexif/commit/75aa73267fdb1e0ebfbc00369e7312bac43d0566
CONFIRM https://github.com/libexif/libexif/issues/26
UBUNTU https://usn.ubuntu.com/4277-1/
SUSE http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00000.html
SUSE http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00017.html
FEDORA https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VA5BPQLOFXIZOOJHBYDU635Z5KLUMTDD/
FEDORA https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MO2VTHD7OLPJDCJBHKUQTBAHZOBBCF6X/
GENTOO https://security.gentoo.org/glsa/202007-05

Match rules

CPE URI Source package Min version Max version
cpe:2.3:o:google:android:10.0:*:*:*:*:*:*:* android == None == 10.0

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
libexif 3.13-community 0.6.22-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
libexif 3.12-main 0.6.22-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
libexif 3.11-main 0.6.22-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
libexif 3.10-main 0.6.22-r0 Natanael Copa <ncopa@alpinelinux.org> fixed