Download
| Alert*
oval:org.secpod.oval:def:61767
An out-of-bounds write vulnerability due to an integer overflow was reported in libexif-dev, a library to parse EXIF files, which could result in denial of service, or potentially the execution of arbitrary code if specially crafted image files are processed. oval:org.secpod.oval:def:61588 libexif: library to parse EXIF files Several security issues were fixed in libexif. oval:org.secpod.oval:def:61781 libexif: library to parse EXIF files Several security issues were fixed in libexif. oval:org.secpod.oval:def:504723 The libexif packages provide a library for extracting extra information from image files. The following packages have been upgraded to a later upstream version: libexif . Security Fix: * libexif: out of bounds write in exif-data.c * libexif: out of bounds read due to a missing bounds check in exif ... oval:org.secpod.oval:def:61780 libexif: library to parse EXIF files Several security issues were fixed in libexif. oval:org.secpod.oval:def:89050499 This update for libexif fixes the following issues: - CVE-2019-9278: Fixed an integer overflow . - CVE-2018-20030: Fixed a denial of service by endless recursion . oval:org.secpod.oval:def:89050228 This update for libexif to 0.6.22 fixes the following issues: Security issues fixed: - CVE-2016-6328: Fixed an integer overflow in parsing MNOTE entry data of the input file . - CVE-2017-7544: Fixed an out-of-bounds heap read vulnerability in exif_data_save_data_entry function in libexif/exif-data.c ... oval:org.secpod.oval:def:89050319 This update for libexif to 0.6.22 fixes the following issues: Security issues fixed: - CVE-2016-6328: Fixed an integer overflow in parsing MNOTE entry data of the input file . - CVE-2017-7544: Fixed an out-of-bounds heap read vulnerability in exif_data_save_data_entry function in libexif/exif-data.c ... oval:org.secpod.oval:def:118382 Most digital cameras produce EXIF files, which are JPEG files with extra tags that contain information about the image. The EXIF library allows you to parse an EXIF file and read the data from those tags. oval:org.secpod.oval:def:118375 Most digital cameras produce EXIF files, which are JPEG files with extra tags that contain information about the image. The EXIF library allows you to parse an EXIF file and read the data from those tags. oval:org.secpod.oval:def:69948 An out-of-bounds write vulnerability due to an integer overflow was reported in libexif-dev, a library to parse EXIF files, which could result in denial of service, or potentially the execution of arbitrary code if specially crafted image files are processed. oval:org.secpod.oval:def:604742 An out-of-bounds write vulnerability due to an integer overflow was reported in libexif-dev, a library to parse EXIF files, which could result in denial of service, or potentially the execution of arbitrary code if specially crafted image files are processed. oval:org.secpod.oval:def:89000410 This update for libexif fixes the following issues: Security issues fixed: - CVE-2016-6328: Fixed an integer overflow in parsing MNOTE entry data of the input file . - CVE-2017-7544: Fixed an out-of-bounds heap read vulnerability in exif_data_save_data_entry function in libexif/exif-data.c . - CVE-2 ... oval:org.secpod.oval:def:2105874 Oracle Solaris 11 - ( CVE-2019-9278 ) oval:org.secpod.oval:def:61587 libexif: library to parse EXIF files Several security issues were fixed in libexif. oval:org.secpod.oval:def:89000481 This update for libexif fixes the following issues: - CVE-2019-9278: Fixed an integer overflow . - CVE-2018-20030: Fixed a denial of service by endless recursion . oval:org.secpod.oval:def:89000421 This update for libexif fixes the following issues: - CVE-2019-9278: Fixed an integer overflow . - CVE-2018-20030: Fixed a denial of service by endless recursion . oval:org.secpod.oval:def:504318 The libexif packages provide a library for extracting extra information from image files. The following packages have been upgraded to a later upstream version: libexif . Security Fix: * libexif: out of bound write in exif-data.c * libexif: out of bounds read due to a missing bounds check in exif_ ... oval:org.secpod.oval:def:68006 The libexif packages provide a library for extracting extra information from image files. The following packages have been upgraded to a later upstream version: libexif . Security Fix: * libexif: out of bounds write in exif-data.c * libexif: out of bounds read due to a missing bounds check in exif ... oval:org.secpod.oval:def:205629 The libexif packages provide a library for extracting extra information from image files. The following packages have been upgraded to a later upstream version: libexif . Security Fix: * libexif: out of bound write in exif-data.c * libexif: out of bounds read due to a missing bounds check in exif_ ... oval:org.secpod.oval:def:1504231 [0.6.22-4] - Add patch for CVE-2020-0181/CVE-2020-0198 - Resolves: #1847753 - Resolves: #1847761 [0.6.22-3] - Also remove timezone from the .mo files - Related: #1841320 [0.6.22-2] - Remove timestamps from the .mo files to avoid multilib conflicts - Related: #1841320 oval:org.secpod.oval:def:1504175 [0.6.22-1] - Upgrade to 0.6.22 - Resolves: #1841316 oval:org.secpod.oval:def:1700423 In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media content provider with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: ... |