An update for exiv2 is now available for openEuler-24.03-LTS-SP2,openEuler-24.03-LTS-SP3,openEuler-20.03-LTS-SP4,openEuler-22.03-LTS-SP4,openEuler-24.03-LTS,openEuler-24.03-LTS-SP1 Security Advisory openeuler-security@openeuler.org openEuler security committee openEuler-SA-2026-1564 Final 1.0 1.0 2026-03-15 Initial 2026-03-15 2026-03-15 openEuler SA Tool V1.0 2026-03-15 exiv2 security update An update for exiv2 is now available for openEuler-24.03-LTS-SP2,openEuler-24.03-LTS-SP3,openEuler-20.03-LTS-SP4,openEuler-22.03-LTS-SP4,openEuler-24.03-LTS,openEuler-24.03-LTS-SP1 Exiv2 is a Cross-platform C++ library and a command line utility to manage image metadata. It provides fast and easy read and write access to the Exif, IPTC and XMP metadata and the ICC Profile embedded within digital images in various formats. Security Fix(es): An out-of-bounds read was found in Exiv2 version v0.28.7. The vulnerability is in the CRW image parser. The bug is reproducible with our fuzz target, but we have not been able to reproduce it with the exiv2 command line application. Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. The out-of-bounds read is triggered when Exiv2 is used to read the metadata of a crafted video file.(CVE-2026-25884) Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. Prior to version 0.28.8, an out-of-bounds read was found in Exiv2. The vulnerability is in the preview component, which is only triggered when running Exiv2 with an extra command line argument, like -pp. The out-of-bounds read is at a 4GB offset, which usually causes Exiv2 to crash. This issue has been patched in version 0.28.8.(CVE-2026-27596) Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. Prior to version 0.28.8, an uncaught exception was found in Exiv2. The vulnerability is in the preview component, which is only triggered when running Exiv2 with an extra command line argument, like -pp. Due to an integer overflow, the code attempts to create a huge std::vector, which causes Exiv2 to crash with an uncaught exception. This issue has been patched in version 0.28.8.(CVE-2026-27631) An update for exiv2 is now available for openEuler-24.03-LTS-SP2,openEuler-24.03-LTS-SP3,openEuler-20.03-LTS-SP4,openEuler-22.03-LTS-SP4,openEuler-24.03-LTS,openEuler-24.03-LTS-SP1. openEuler Security has rated this update as having a security impact of high. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section. High exiv2 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-1564 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-25884 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-27596 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-27631 https://nvd.nist.gov/vuln/detail/CVE-2026-25884 https://nvd.nist.gov/vuln/detail/CVE-2026-27596 https://nvd.nist.gov/vuln/detail/CVE-2026-27631 openEuler-24.03-LTS-SP2 openEuler-24.03-LTS-SP3 openEuler-20.03-LTS-SP4 openEuler-22.03-LTS-SP4 openEuler-24.03-LTS openEuler-24.03-LTS-SP1 exiv2-0.28.2-8.oe2403sp2.x86_64.rpm exiv2-debuginfo-0.28.2-8.oe2403sp2.x86_64.rpm exiv2-debugsource-0.28.2-8.oe2403sp2.x86_64.rpm exiv2-devel-0.28.2-8.oe2403sp2.x86_64.rpm exiv2-0.28.2-8.oe2403sp3.x86_64.rpm exiv2-debuginfo-0.28.2-8.oe2403sp3.x86_64.rpm exiv2-debugsource-0.28.2-8.oe2403sp3.x86_64.rpm exiv2-devel-0.28.2-8.oe2403sp3.x86_64.rpm exiv2-0.27.5-7.oe2003sp4.x86_64.rpm exiv2-debuginfo-0.27.5-7.oe2003sp4.x86_64.rpm exiv2-debugsource-0.27.5-7.oe2003sp4.x86_64.rpm exiv2-devel-0.27.5-7.oe2003sp4.x86_64.rpm exiv2-0.27.5-7.oe2203sp4.x86_64.rpm exiv2-debuginfo-0.27.5-7.oe2203sp4.x86_64.rpm exiv2-debugsource-0.27.5-7.oe2203sp4.x86_64.rpm exiv2-devel-0.27.5-7.oe2203sp4.x86_64.rpm exiv2-0.28.2-8.oe2403.x86_64.rpm exiv2-debuginfo-0.28.2-8.oe2403.x86_64.rpm exiv2-debugsource-0.28.2-8.oe2403.x86_64.rpm exiv2-devel-0.28.2-8.oe2403.x86_64.rpm exiv2-0.28.2-8.oe2403sp1.x86_64.rpm exiv2-debuginfo-0.28.2-8.oe2403sp1.x86_64.rpm exiv2-debugsource-0.28.2-8.oe2403sp1.x86_64.rpm exiv2-devel-0.28.2-8.oe2403sp1.x86_64.rpm exiv2-help-0.28.2-8.oe2403sp2.noarch.rpm exiv2-help-0.28.2-8.oe2403sp3.noarch.rpm exiv2-help-0.27.5-7.oe2003sp4.noarch.rpm exiv2-help-0.27.5-7.oe2203sp4.noarch.rpm exiv2-help-0.28.2-8.oe2403.noarch.rpm exiv2-help-0.28.2-8.oe2403sp1.noarch.rpm exiv2-0.28.2-8.oe2403sp2.aarch64.rpm exiv2-debuginfo-0.28.2-8.oe2403sp2.aarch64.rpm exiv2-debugsource-0.28.2-8.oe2403sp2.aarch64.rpm exiv2-devel-0.28.2-8.oe2403sp2.aarch64.rpm exiv2-0.28.2-8.oe2403sp3.aarch64.rpm exiv2-debuginfo-0.28.2-8.oe2403sp3.aarch64.rpm exiv2-debugsource-0.28.2-8.oe2403sp3.aarch64.rpm exiv2-devel-0.28.2-8.oe2403sp3.aarch64.rpm exiv2-0.27.5-7.oe2003sp4.aarch64.rpm exiv2-debuginfo-0.27.5-7.oe2003sp4.aarch64.rpm exiv2-debugsource-0.27.5-7.oe2003sp4.aarch64.rpm exiv2-devel-0.27.5-7.oe2003sp4.aarch64.rpm exiv2-0.27.5-7.oe2203sp4.aarch64.rpm exiv2-debuginfo-0.27.5-7.oe2203sp4.aarch64.rpm exiv2-debugsource-0.27.5-7.oe2203sp4.aarch64.rpm exiv2-devel-0.27.5-7.oe2203sp4.aarch64.rpm exiv2-0.28.2-8.oe2403.aarch64.rpm exiv2-debuginfo-0.28.2-8.oe2403.aarch64.rpm exiv2-debugsource-0.28.2-8.oe2403.aarch64.rpm exiv2-devel-0.28.2-8.oe2403.aarch64.rpm exiv2-0.28.2-8.oe2403sp1.aarch64.rpm exiv2-debuginfo-0.28.2-8.oe2403sp1.aarch64.rpm exiv2-debugsource-0.28.2-8.oe2403sp1.aarch64.rpm exiv2-devel-0.28.2-8.oe2403sp1.aarch64.rpm exiv2-0.28.2-8.oe2403sp2.src.rpm exiv2-0.28.2-8.oe2403sp3.src.rpm exiv2-0.27.5-7.oe2003sp4.src.rpm exiv2-0.27.5-7.oe2203sp4.src.rpm exiv2-0.28.2-8.oe2403.src.rpm exiv2-0.28.2-8.oe2403sp1.src.rpm An out-of-bounds read was found in Exiv2 version v0.28.7. The vulnerability is in the CRW image parser. The bug is reproducible with our fuzz target, but we have not been able to reproduce it with the exiv2 command line application. Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. The out-of-bounds read is triggered when Exiv2 is used to read the metadata of a crafted video file. 2026-03-15 CVE-2026-25884 openEuler-24.03-LTS-SP2 openEuler-24.03-LTS-SP3 openEuler-20.03-LTS-SP4 openEuler-22.03-LTS-SP4 openEuler-24.03-LTS openEuler-24.03-LTS-SP1 Low 2.7 AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X exiv2 security update 2026-03-15 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-1564 Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. Prior to version 0.28.8, an out-of-bounds read was found in Exiv2. The vulnerability is in the preview component, which is only triggered when running Exiv2 with an extra command line argument, like -pp. The out-of-bounds read is at a 4GB offset, which usually causes Exiv2 to crash. This issue has been patched in version 0.28.8. 2026-03-15 CVE-2026-27596 openEuler-24.03-LTS-SP2 openEuler-24.03-LTS-SP3 openEuler-20.03-LTS-SP4 openEuler-22.03-LTS-SP4 openEuler-24.03-LTS openEuler-24.03-LTS-SP1 High 7.5 AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H exiv2 security update 2026-03-15 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-1564 Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. Prior to version 0.28.8, an uncaught exception was found in Exiv2. The vulnerability is in the preview component, which is only triggered when running Exiv2 with an extra command line argument, like -pp. Due to an integer overflow, the code attempts to create a huge std::vector, which causes Exiv2 to crash with an uncaught exception. This issue has been patched in version 0.28.8. 2026-03-15 CVE-2026-27631 openEuler-24.03-LTS-SP2 openEuler-24.03-LTS-SP3 openEuler-20.03-LTS-SP4 openEuler-22.03-LTS-SP4 openEuler-24.03-LTS openEuler-24.03-LTS-SP1 Medium 5.3 AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N exiv2 security update 2026-03-15 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-1564