vulnerability

Ubuntu: USN-3852-1 (CVE-2017-11591): Exiv2 vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:N/C:N/I:N/A:P)	Jul 23, 2017	Jan 17, 2019	Mar 27, 2026

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:P)

Published

Jul 23, 2017

Added

Jan 17, 2019

Modified

Mar 27, 2026

Description

There is a Floating point exception in the Exiv2::ValueType function in Exiv2 0.26 that will lead to a remote denial of service attack via crafted input.

Solutions

ubuntu-upgrade-exiv2ubuntu-upgrade-libexiv2-12ubuntu-upgrade-libexiv2-14

References

CVE-2017-11591
https://attackerkb.com/topics/CVE-2017-11591
EUVD-EUVD-2017-0038
NVD-CVE-2017-11591
UBUNTU-USN-3852-1
https://euvd.enisa.europa.eu/vulnerability/EUVD-2017-0038

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report