This update for libexif fixes the following issues:
CVE-2019-9278: Fixed an integer overflow (bsc#1160770).
CVE-2018-20030: Fixed a denial of service by endless recursion (bsc#1120943).
Affected Packages
libexif
SUSE Enterprise Storage 5SUSE HPE Helion OpenStack 8SUSE Linux Enterprise Desktop 12 SP4SUSE Linux Enterprise Server 12 SP1-LTSSSUSE Linux Enterprise Server 12 SP2-BCL
Fixed in:
0.6.21-8.6.1
libexif12
SUSE Enterprise Storage 5SUSE HPE Helion OpenStack 8SUSE Linux Enterprise Desktop 12 SP4SUSE Linux Enterprise Server 12 SP1-LTSSSUSE Linux Enterprise Server 12 SP2-BCL
Fixed in:
0.6.21-8.6.1
libexif12-32bit
SUSE Enterprise Storage 5SUSE HPE Helion OpenStack 8SUSE Linux Enterprise Desktop 12 SP4SUSE Linux Enterprise Server 12 SP1-LTSSSUSE Linux Enterprise Server 12 SP2-BCL
Fixed in:
0.6.21-8.6.1
libexif-devel
SUSE Linux Enterprise Software Development Kit 12 SP4SUSE Linux Enterprise Software Development Kit 12 SP5