CVE-2021-28277

Опубликовано: 23 мар. 2022

Источник: debian

EPSS Низкий

Описание

A Heap-based Buffer Overflow vulnerabilty exists in jhead 3.04 and 3.05 is affected by: Buffer Overflow via the RemoveUnknownSections function in jpgfile.c.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
jhead	fixed	1:3.06.0.1-2		package

Примечания

https://github.com/Matthias-Wandel/jhead/commit/b8d78e5ec982e86cdd70ebfc1ebbb2273c982eea (3.06.0.1)
https://github.com/Matthias-Wandel/jhead/issues/16
Crash in CLI tool, no security impact

EPSS

Процентиль: 29%

0.00105

Низкий

Связанные уязвимости

CVE-2021-28277

CVSS3: 7.8

ubuntu

почти 4 года назад

A Heap-based Buffer Overflow vulnerabilty exists in jhead 3.04 and 3.05 is affected by: Buffer Overflow via the RemoveUnknownSections function in jpgfile.c.

CVE-2021-28277

CVSS3: 7.8

nvd

почти 4 года назад

A Heap-based Buffer Overflow vulnerabilty exists in jhead 3.04 and 3.05 is affected by: Buffer Overflow via the RemoveUnknownSections function in jpgfile.c.

GHSA-95g4-8wpg-6c5r

CVSS3: 7.8

github

почти 4 года назад

A Heap-based Buffer Overflow vulnerabilty exists in jhead 3.04 and 3.05 is affected by: Buffer Overflow via the RemoveUnknownSections function in jpgfile.c.

EPSS

Процентиль: 29%

0.00105

Низкий