{"id":"RHSA-2021:4173","summary":"Red Hat Security Advisory: exiv2 security, bug fix, and enhancement update","modified":"2026-03-23T04:46:11.401007Z","published":"2024-09-16T05:43:10Z","upstream":["CVE-2021-29457","CVE-2021-29458","CVE-2021-29463","CVE-2021-29464","CVE-2021-29470","CVE-2021-29473","CVE-2021-29623","CVE-2021-31292","CVE-2021-32617","CVE-2021-3482","CVE-2021-37618","CVE-2021-37619"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2021:4173"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#moderate"},{"type":"ARTICLE","url":"https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.5_release_notes/"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1946314"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1952607"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1952612"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1953708"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1954065"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1961650"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1961691"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1978100"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1978105"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1989860"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1990330"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1992165"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1992174"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_4173.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2021-3482"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2021-3482"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-3482"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2021-29457"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2021-29457"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-29457"},{"type":"ARTICLE","url":"https://github.com/Exiv2/exiv2/security/advisories/GHSA-v74w-h496-cgqm"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2021-29458"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2021-29458"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-29458"},{"type":"ARTICLE","url":"https://github.com/Exiv2/exiv2/security/advisories/GHSA-57jj-75fm-9rq5"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2021-29463"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2021-29463"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-29463"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2021-29464"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2021-29464"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-29464"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2021-29470"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2021-29470"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-29470"},{"type":"ARTICLE","url":"https://github.com/Exiv2/exiv2/security/advisories/GHSA-8949-hhfh-j7rj"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2021-29473"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2021-29473"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-29473"},{"type":"ARTICLE","url":"https://github.com/Exiv2/exiv2/security/advisories/GHSA-7569-phvm-vwc2"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2021-29623"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2021-29623"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-29623"},{"type":"ARTICLE","url":"https://github.com/Exiv2/exiv2/security/advisories/GHSA-6253-qjwm-3q4v"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2021-31292"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2021-31292"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-31292"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2021-32617"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2021-32617"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-32617"},{"type":"ARTICLE","url":"https://github.com/Exiv2/exiv2/security/advisories/GHSA-w8mv-g8qq-36mj"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2021-37618"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2021-37618"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-37618"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2021-37619"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2021-37619"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-37619"}],"affected":[{"package":{"name":"exiv2","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/exiv2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.27.4-5.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4173.json"}},{"package":{"name":"exiv2-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/exiv2-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.27.4-5.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4173.json"}},{"package":{"name":"exiv2-debugsource","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/exiv2-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.27.4-5.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4173.json"}},{"package":{"name":"exiv2-devel","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/exiv2-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.27.4-5.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4173.json"}},{"package":{"name":"exiv2-doc","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/exiv2-doc"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.27.4-5.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4173.json"}},{"package":{"name":"exiv2-libs","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/exiv2-libs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.27.4-5.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4173.json"}},{"package":{"name":"exiv2-libs-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/exiv2-libs-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.27.4-5.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4173.json"}},{"package":{"name":"exiv2","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/exiv2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.27.4-5.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4173.json"}},{"package":{"name":"exiv2-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/exiv2-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.27.4-5.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4173.json"}},{"package":{"name":"exiv2-debugsource","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/exiv2-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.27.4-5.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4173.json"}},{"package":{"name":"exiv2-devel","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/exiv2-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.27.4-5.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4173.json"}},{"package":{"name":"exiv2-doc","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/exiv2-doc"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.27.4-5.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4173.json"}},{"package":{"name":"exiv2-libs","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/exiv2-libs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.27.4-5.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4173.json"}},{"package":{"name":"exiv2-libs-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/exiv2-libs-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.27.4-5.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:4173.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}