Download
| Alert*
oval:org.secpod.oval:def:504723
The libexif packages provide a library for extracting extra information from image files. The following packages have been upgraded to a later upstream version: libexif . Security Fix: * libexif: out of bounds write in exif-data.c * libexif: out of bounds read due to a missing bounds check in exif ... oval:org.secpod.oval:def:119101 Most digital cameras produce EXIF files, which are JPEG files with extra tags that contain information about the image. The EXIF library allows you to parse an EXIF file and read the data from those tags. oval:org.secpod.oval:def:119050 Most digital cameras produce EXIF files, which are JPEG files with extra tags that contain information about the image. The EXIF library allows you to parse an EXIF file and read the data from those tags. oval:org.secpod.oval:def:604742 An out-of-bounds write vulnerability due to an integer overflow was reported in libexif-dev, a library to parse EXIF files, which could result in denial of service, or potentially the execution of arbitrary code if specially crafted image files are processed. oval:org.secpod.oval:def:69948 An out-of-bounds write vulnerability due to an integer overflow was reported in libexif-dev, a library to parse EXIF files, which could result in denial of service, or potentially the execution of arbitrary code if specially crafted image files are processed. oval:org.secpod.oval:def:2004174 In exif_data_load_data_thumbnail of exif-data.c, there is a possible denial of service due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android I ... oval:org.secpod.oval:def:1504231 [0.6.22-4] - Add patch for CVE-2020-0181/CVE-2020-0198 - Resolves: #1847753 - Resolves: #1847761 [0.6.22-3] - Also remove timezone from the .mo files - Related: #1841320 [0.6.22-2] - Remove timestamps from the .mo files to avoid multilib conflicts - Related: #1841320 oval:org.secpod.oval:def:68006 The libexif packages provide a library for extracting extra information from image files. The following packages have been upgraded to a later upstream version: libexif . Security Fix: * libexif: out of bounds write in exif-data.c * libexif: out of bounds read due to a missing bounds check in exif ... oval:org.secpod.oval:def:89046218 This update for libexif fixes the following issues: - CVE-2020-0181: Fixed an integer overflow that could lead to denial of service . - CVE-2020-0198: Fixed and unsigned integer overflow that could lead to denial of service . - CVE-2020-0452: Fixed a buffer overflow check that could be optimized awa ... oval:org.secpod.oval:def:89046215 This update for libexif fixes the following issues: - CVE-2020-0181: Fixed an integer overflow that could lead to denial of service . - CVE-2020-0198: Fixed and unsigned integer overflow that could lead to denial of service . - CVE-2020-0452: Fixed a buffer overflow check that could be optimized awa ... oval:org.secpod.oval:def:89047487 This update for libexif fixes the following issues: - CVE-2020-0181: Fixed an integer overflow that could lead to denial of service . - CVE-2020-0198: Fixed and unsigned integer overflow that could lead to denial of service . - CVE-2020-0452: Fixed a buffer overflow check that could be optimized awa ... |