Описание
Integer overflow in the exif_data_load_data_entry function in exif-data.c in libexif before 0.6.14 allows user-assisted remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via crafted EXIF data, involving the (1) doff or (2) s variable.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 0.6.12-2ubuntu0.2 |
| devel | released | 0.6.16-1 |
| edgy | released | 0.6.13-4ubuntu0.2 |
| feisty | released | 0.6.13-5ubuntu0.2 |
| upstream | needs-triage |
Показывать по
9.3 Critical
CVSS2
Связанные уязвимости
Integer overflow in the exif_data_load_data_entry function in exif-data.c in libexif before 0.6.14 allows user-assisted remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via crafted EXIF data, involving the (1) doff or (2) s variable.
Integer overflow in the exif_data_load_data_entry function in exif-data.c in libexif before 0.6.14 allows user-assisted remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via crafted EXIF data, involving the (1) doff or (2) s variable.
Integer overflow in the exif_data_load_data_entry function in exif-dat ...
Integer overflow in the exif_data_load_data_entry function in exif-data.c in libexif before 0.6.14 allows user-assisted remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via crafted EXIF data, involving the (1) doff or (2) s variable.
Уязвимость операционной системы Gentoo Linux, позволяющая удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
9.3 Critical
CVSS2