View at Official suse advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2018-20030 severity low: SUSE including 26 source package names (libexif-0.6.17-2.14.7.2, libexif-32bit-0.6.17-2.14.7.2, …), 100 product×package rows across 55 product lines (HPE Helion OpenStack 8, SUSE Enterprise Storage 5, … (55 product lines)): Fixed 100.
An error when processing the EXIF_IFD_INTEROPERABILITY and EXIF_IFD_EXIF tags within libexif version 0.6.21 can be exploited to exhaust available CPU resources.