CVE-2025-54080

CVE-2025-54080

Name

CVE-2025-54080

Description

Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. An out-of-bounds read was found in Exiv2 versions 0.28.5 and earlier. The out-of-bounds read is triggered when Exiv2 is used to write metadata into a crafted image file. An attacker could potentially exploit the vulnerability to cause a denial of service by crashing Exiv2, if they can trick the victim into running Exiv2 on a crafted image file. Note that this bug is only triggered when writing the metadata, which is a less frequently used Exiv2 operation than reading the metadata. The bug is fixed in version 0.28.6.

NVD Severity

low

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
MISC	https://github.com/Exiv2/exiv2/commit/e737332427711f15bcdc4e903203d6b7493eaec0
CONFIRM	https://github.com/Exiv2/exiv2/security/advisories/GHSA-496f-x7cq-cq39

Type

URI

MISC

https://github.com/Exiv2/exiv2/commit/e737332427711f15bcdc4e903203d6b7493eaec0

CONFIRM

https://github.com/Exiv2/exiv2/security/advisories/GHSA-496f-x7cq-cq39

CPE URI	Source package	Min version	Max version
	exiv2	>= 0	< 0.28.6

CPE URI

Source package

Min version

Max version

exiv2

>= 0

< 0.28.6

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
exiv2	edge-community	0.28.6-r0	Natanael Copa <ncopa@alpinelinux.org>	fixed
exiv2	edge-community	0.28.5-r1	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
exiv2	edge-community	0.28.5-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
exiv2	edge-community	0.28.3-r1	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
exiv2	edge-community	0.28.3-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
exiv2	edge-community	0.28.2-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
exiv2	edge-community	0.28.1-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
exiv2	edge-community	0.27.5-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
exiv2	edge-community	0.27.4-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
exiv2	edge-community	0.27.3-r2	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
exiv2	edge-community	0.27.3-r1	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
exiv2	edge-community	0.27.2-r6	None	possibly vulnerable
exiv2	edge-community	0.27.2-r2	None	possibly vulnerable
exiv2	edge-community	0.27.2-r0	None	possibly vulnerable
exiv2	3.22-community	0.28.6-r0	Natanael Copa <ncopa@alpinelinux.org>	fixed
exiv2	3.22-community	0.28.5-r1	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
exiv2	3.22-community	0.28.5-r0	None	possibly vulnerable
exiv2	3.22-community	0.28.3-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
exiv2	3.22-community	0.28.2-r0	None	possibly vulnerable
exiv2	3.22-community	0.28.1-r0	None	possibly vulnerable
exiv2	3.22-community	0.27.5-r0	None	possibly vulnerable
exiv2	3.22-community	0.27.4-r0	None	possibly vulnerable
exiv2	3.22-community	0.27.3-r2	None	possibly vulnerable
exiv2	3.22-community	0.27.3-r1	None	possibly vulnerable
exiv2	3.22-community	0.27.2-r6	None	possibly vulnerable
exiv2	3.22-community	0.27.2-r2	None	possibly vulnerable
exiv2	3.22-community	0.27.2-r0	None	possibly vulnerable

Source package

Branch

Version

Maintainer

Status

References

Match rules

Vulnerable and fixed packages