Описание
Integer overflow in libexif 0.6.16 and earlier allows context-dependent attackers to execute arbitrary code via an image with crafted EXIF tags, possibly involving the exif_data_load_data_thumbnail function in exif-data.c.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 0.6.12-2ubuntu0.3 |
| devel | not-affected | 0.6.16-2.1 |
| edgy | ignored | end of life |
| feisty | released | 0.6.13-5ubuntu0.3 |
| gutsy | released | 0.6.16-1ubuntu0.1 |
| hardy | not-affected | 0.6.16-2.1 |
| upstream | released | 0.6.16-2.1 |
Показывать по
EPSS
6.8 Medium
CVSS2
Связанные уязвимости
Integer overflow in libexif 0.6.16 and earlier allows context-dependent attackers to execute arbitrary code via an image with crafted EXIF tags, possibly involving the exif_data_load_data_thumbnail function in exif-data.c.
Integer overflow in libexif 0.6.16 and earlier allows context-dependent attackers to execute arbitrary code via an image with crafted EXIF tags, possibly involving the exif_data_load_data_thumbnail function in exif-data.c.
Integer overflow in libexif 0.6.16 and earlier allows context-dependen ...
Integer overflow in libexif 0.6.16 and earlier allows context-dependent attackers to execute arbitrary code via an image with crafted EXIF tags, possibly involving the exif_data_load_data_thumbnail function in exif-data.c.
Уязвимость операционной системы Red Hat Enterprise Linux, позволяющая удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
EPSS
6.8 Medium
CVSS2