CVE-2026-27631

Name
CVE-2026-27631
Description
Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. Prior to version 0.28.8, an uncaught exception was found in Exiv2. The vulnerability is in the preview component, which is only triggered when running Exiv2 with an extra command line argument, like -pp. Due to an integer overflow, the code attempts to create a huge std::vector, which causes Exiv2 to crash with an uncaught exception. This issue has been patched in version 0.28.8.
NVD Severity
unknown
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
security-advisories@github.com https://github.com/Exiv2/exiv2/commit/659db316eef745899a778a1e0b760a971d1b69df
security-advisories@github.com https://github.com/Exiv2/exiv2/issues/3513
security-advisories@github.com https://github.com/Exiv2/exiv2/pull/3514
security-advisories@github.com https://github.com/Exiv2/exiv2/security/advisories/GHSA-p2pw-7935-c73j

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:exiv2:exiv2:*:*:*:*:*:*:*:* exiv2 >= None <= 0.28.8

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
exiv2 edge-community 0.28.7-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
exiv2 edge-community 0.28.6-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
exiv2 edge-community 0.28.5-r1 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
exiv2 edge-community 0.28.5-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
exiv2 edge-community 0.28.3-r1 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
exiv2 edge-community 0.28.3-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
exiv2 edge-community 0.28.2-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
exiv2 edge-community 0.28.1-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
exiv2 edge-community 0.27.5-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
exiv2 edge-community 0.27.4-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
exiv2 edge-community 0.27.3-r2 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
exiv2 edge-community 0.27.3-r1 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
exiv2 edge-community 0.27.2-r6 None possibly vulnerable
exiv2 edge-community 0.27.2-r2 None possibly vulnerable
exiv2 edge-community 0.27.2-r0 None possibly vulnerable
exiv2 3.23-community 0.28.7-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable