ALSA-2025:7457

[ALSA-2025:7457] Moderate: exiv2 security update

Type:

security

Severity:

moderate

Release date:

2025-07-02

Description:

Exiv2 is a C++ library to access image metadata, supporting read and write access to the Exif, IPTC and XMP metadata, Exif MakerNote support, extract and delete methods for Exif thumbnails, classes to access Ifd, and support for various image formats.  

Security Fix(es):  

  * exiv2: Use After Free in Exiv2 (CVE-2025-26623)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	exiv2-0.28.3-3.el10_0.2.aarch64.rpm	14c415d783b62b19d821707768d1f87c1157e6ccdc4f71fb322559f2694eb34e
aarch64	exiv2-devel-0.28.3-3.el10_0.2.aarch64.rpm	1eba7a2f39778538b4633f778d19afc806e9ff2811e75f57ef3819f69f0ae578
aarch64	exiv2-libs-0.28.3-3.el10_0.2.aarch64.rpm	d01769fcd94434be7f1fc68376e451add20612fd1ee4035b0bf181591046674f
noarch	exiv2-doc-0.28.3-3.el10_0.2.noarch.rpm	df5197478815f16ca0878ace43f689b865b95841cef933edf587a6d389415457
ppc64le	exiv2-0.28.3-3.el10_0.2.ppc64le.rpm	0d8ca1858ed020bfe3f5a9fb64ace78fe53b05dc94eb544caf3a704500c5d7db
ppc64le	exiv2-libs-0.28.3-3.el10_0.2.ppc64le.rpm	d15a32ddf9564f5708570a330de6a29bc25b29458326015e8234022cb9de313c
ppc64le	exiv2-devel-0.28.3-3.el10_0.2.ppc64le.rpm	ef0a443957d076412c2cbcadfbad562211c5276f1056390613261ec389501d30
s390x	exiv2-libs-0.28.3-3.el10_0.2.s390x.rpm	08c74d115e086339b032ff30a3bf52b3b572f9bb133a857e6b334ea0f5b05109
s390x	exiv2-devel-0.28.3-3.el10_0.2.s390x.rpm	8d5b711b71e35ecd6a5d13d29007bb852b76b7cf14a40a6284412aabc98bd405
s390x	exiv2-0.28.3-3.el10_0.2.s390x.rpm	f2b2ea2d6b9383fab4a9d3851dd2fa29db88539686e8b5f88c149ca9d02e55e6
x86_64	exiv2-0.28.3-3.el10_0.2.x86_64.rpm	59a25f7d6945c29876fd6067c445b14f93e22471ae81fead01208a867469c421
x86_64	exiv2-devel-0.28.3-3.el10_0.2.x86_64.rpm	62e18613469a24d110d1fcfcc9d32eb70025e23cb2eaaa9a6b55ce36b3323f92
x86_64	exiv2-libs-0.28.3-3.el10_0.2.x86_64.rpm	cfe120f73a4fa04ae9fb4a7691bd6bab46125cf646a1608da4b45aa3374669e9
x86_64_v2	exiv2-devel-0.28.3-3.el10_0.2.x86_64_v2.rpm	093626748bf9f3764f7850a47c8d6f9b2da015291aa79b191af1f7f616a1b9d5
x86_64_v2	exiv2-0.28.3-3.el10_0.2.x86_64_v2.rpm	5cc2092bf98b6c303ee78a2e4a98a26d5c81daaf03d497f659a2a37b2dc70692
x86_64_v2	exiv2-libs-0.28.3-3.el10_0.2.x86_64_v2.rpm	839389ff032f9e275465411edd4db6247f7dc5ceea5600d100ff08f5fbbfbc34

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.