MDVSA-2008:005 -- Mandriva libexifID: oval:org.secpod.oval:def:301622 | Date: (C)2012-01-07 (M)2021-09-11 |
Class: PATCH | Family: unix |
An infinite recursion flaw was found in the way that libexif parses Exif image tags. A carefully crafted Exif image file opened by an application linked against libexif could cause the application to crash . An integer overflow flaw was also found in how libexif parses Exif image tags. A carefully crafted Exif image file opened by an application linked against libexif could cause the application to crash or execute arbitrary code with the privileges of the user executing the application . The updated packages have been patched to correct these issues.
Platform: |
Mandriva Linux 2007.0 |
Mandriva Linux 2007.1 |
Mandriva Linux 2008.0 |