Описание
An integer underflow bug in the process_EXIF function of the exif.c file of jhead 3.00 raises a heap-based buffer over-read when processing a malicious JPEG file, which may allow a remote attacker to cause a denial-of-service attack or unspecified other impact.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | not-affected | 1:3.00-6 |
| cosmic | not-affected | 1:3.00-6 |
| devel | not-affected | 1:3.00-6 |
| disco | not-affected | 1:3.00-6 |
| eoan | not-affected | 1:3.00-6 |
| esm-apps/bionic | not-affected | 1:3.00-6 |
| esm-apps/focal | not-affected | 1:3.00-6 |
| esm-apps/jammy | not-affected | 1:3.00-6 |
| esm-apps/xenial | released | 1:3.00-4+deb9u1ubuntu0.1~esm4 |
Показывать по
Ссылки на источники
EPSS
4.3 Medium
CVSS2
5.5 Medium
CVSS3
Связанные уязвимости
An integer underflow bug in the process_EXIF function of the exif.c file of jhead 3.00 raises a heap-based buffer over-read when processing a malicious JPEG file, which may allow a remote attacker to cause a denial-of-service attack or unspecified other impact.
An integer underflow bug in the process_EXIF function of the exif.c fi ...
An integer underflow bug in the process_EXIF function of the exif.c file of jhead 3.00 raises a heap-based buffer over-read when processing a malicious JPEG file, which may allow a remote attacker to cause a denial-of-service attack or unspecified other impact.
EPSS
4.3 Medium
CVSS2
5.5 Medium
CVSS3