This update for libexif fixes the following issues:
CVE-2019-9278: Fixed an integer overflow (bsc#1160770).
CVE-2018-20030: Fixed a denial of service by endless recursion (bsc#1120943).
Affected Packages
libexif-devel
SUSE Enterprise Storage 6SUSE Linux Enterprise Desktop 15SUSE Linux Enterprise Desktop 15 SP1SUSE Linux Enterprise High Performance Computing 15SUSE Linux Enterprise High Performance Computing 15 SP1
Fixed in:
0.6.21-5.3.1
libexif12
SUSE Enterprise Storage 6SUSE Linux Enterprise Desktop 15SUSE Linux Enterprise Desktop 15 SP1SUSE Linux Enterprise High Performance Computing 15SUSE Linux Enterprise High Performance Computing 15 SP1