cpe:/a:libexif:libexif:0.6.16 CVE-2007-6352 2007-12-19T21:46:00.000-05:00 2017-09-28T21:29:53.863-04:00 6.8 NETWORK MEDIUM NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2007-12-20T14:42:00.000-05:00 SECTRACK 1019124 BUGTRAQ 20080105 rPSA-2008-0006-1 libexif SUNALERT 234701 BID 26942 SECUNIA 28076 SECUNIA 28127 SECUNIA 28195 SECUNIA 28266 SECUNIA 28346 SECUNIA 28400 SECUNIA 28636 SECUNIA 28776 SECUNIA 29381 SECUNIA 32274 OSVDB 42653 VUPEN ADV-2007-4278 VUPEN ADV-2008-0947 DEBIAN DSA-1487 FEDORA FEDORA-2007-4608 FEDORA FEDORA-2007-4667 GENTOO GLSA-200712-15 MANDRIVA MDVSA-2008:005 REDHAT RHSA-2007:1165 REDHAT RHSA-2007:1166 SUSE SUSE-SR:2008:002 UBUNTU USN-654-1 CONFIRM http://bugs.gentoo.org/show_bug.cgi?id=202350 MISC https://bugzilla.redhat.com/show_bug.cgi?id=425561 CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=425621 CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=425631 CONFIRM https://issues.rpath.com/browse/RPL-2068 XF libexif-exifdataloaddatathumbnail-bo(39167) Integer overflow in libexif 0.6.16 and earlier allows context-dependent attackers to execute arbitrary code via an image with crafted EXIF tags, possibly involving the exif_data_load_data_thumbnail function in exif-data.c.