UbuntuUpdates.org

Package "exiv2"

Name: exiv2

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • EXIF/IPTC/XMP metadata manipulation library
  • EXIF/IPTC/XMP metadata manipulation library - development files
  • EXIF/IPTC/XMP metadata manipulation library - HTML documentation
Latest version: 0.27.5-3ubuntu1.1
Release: jammy (22.04)
Level: updates
Repository: main

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Other versions of "exiv2" in Jammy

Repository Area Version
base main 0.27.5-3ubuntu1
base universe 0.27.5-3ubuntu1
security main 0.27.5-3ubuntu1.1
security universe 0.27.5-3ubuntu1.1
updates universe 0.27.5-3ubuntu1.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 0.27.5-3ubuntu1.1 2026-03-18 15:07:59 UTC

  exiv2 (0.27.5-3ubuntu1.1) jammy-security; urgency=medium

  * SECURITY UPDATE: Out of Bounds Read
    - debian/patches/CVE-2026-25884.patch: Fix out-of-bounds read
    - debian/patches/CVE-2026-27596.patch: Check for integer overflow.
    - CVE-2026-25884
    - CVE-2026-27596
  * SECURITY UPDATE: Denial of Service
    - debian/patches/CVE-2025-54080.patch: Better bounds checking
    - debian/patches/CVE-2026-27631.patch: Check for integer overflow
    - debian/patches/CVE-2025-55304-1.patch: Add new method
      appendIccProfile to fix quadratic performance issue
    - debian/patches/CVE-2025-55304-2.patch: Fix docstring
    - CVE-2025-54080
    - CVE-2026-27631
    - CVE-2025-55304

 -- Bruce Cable <email address hidden> Fri, 13 Mar 2026 19:21:32 +1100
CVE-2026-25884 Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. Prior to version 0.28.8,
CVE-2026-27596 Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. Prior to version 0.28.8,
CVE-2025-54080 Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. An out-of-bounds read was
CVE-2026-27631 Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. Prior to version 0.28.8,
CVE-2025-55304 Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. A denial-of-service was f


About   -   Send Feedback to @ubuntu_updates