Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2012-2837HistoryJul 13, 2012 - 10:34 a.m.
CVE-2012-2837
2012-07-1310:34:00
Debian Security Bug Tracker
security-tracker.debian.org
5
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.039 Low
EPSS
Percentile
91.9%
The mnote_olympus_entry_get_value function in olympus/mnote-olympus-entry.c in the EXIF Tag Parsing Library (aka libexif) before 0.6.21 allows remote attackers to cause a denial of service (divide-by-zero error) via an image with crafted EXIF tags that are not properly handled during the formatting of EXIF maker note tags.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | libexif | < 0.6.20-3 | libexif_0.6.20-3_all.deb |
| Debian | 11 | all | libexif | < 0.6.20-3 | libexif_0.6.20-3_all.deb |
| Debian | 10 | all | libexif | < 0.6.20-3 | libexif_0.6.20-3_all.deb |
| Debian | 999 | all | libexif | < 0.6.20-3 | libexif_0.6.20-3_all.deb |
| Debian | 13 | all | libexif | < 0.6.20-3 | libexif_0.6.20-3_all.deb |
Related
ubuntucve
ubuntucve
CVE-2012-2837
2012-07-13 00:00:00
osv
osv
CVE-2012-2837
2012-07-13 10:34:00
libexif - several
2012-10-11 00:00:00
prion
prion
Design/Logic Flaw
2012-07-13 10:34:00
cve
cve
CVE-2012-2837
2012-07-13 10:34:00
alpinelinux
alpinelinux
CVE-2012-2837
2012-07-13 10:34:00
nessus
nessus
SuSE 10 Security Update : libexif (ZYPP Patch Number 8224)
2012-07-24 00:00:00
Debian DSA-2559-1 : libexif - several vulnerabilities
2012-10-18 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2012:0902-1)
2021-06-09 00:00:00
RedHat Update for libexif RHSA-2012:1255-01
2012-09-17 00:00:00
Ubuntu Update for libexif USN-1513-1
2012-07-26 00:00:00
suse
suse
Security update for libexif (important)
2012-07-23 19:08:42
Security update for libexif (important)
2012-07-23 19:08:44
redhat
redhat
(RHSA-2012:1255) Moderate: libexif security update
2012-09-11 00:00:00
veracode
veracode
Heap-Based Buffer Overflow
2019-05-02 04:43:08
Arbitrary Code Execution And Denial Of Service (DoS)
2019-05-02 04:43:08
Denial Of Service (DoS)
2019-05-02 04:43:08
centos
centos
libexif security update
2012-09-11 18:50:44
fedora
fedora
[SECURITY] Fedora 16 Update: libexif-0.6.21-2.fc16
2013-02-08 02:14:42
[SECURITY] Fedora 17 Update: libexif-0.6.21-2.fc17
2013-02-08 02:34:57
ubuntu
ubuntu
libexif vulnerabilities
2012-07-23 00:00:00
securityvulns
securityvulns
[ MDVSA-2012:106 ] libexif
2012-07-16 00:00:00
libexif project security advisory July 12, 2012
2012-07-23 00:00:00
libexif / exif multiple security vulnerabilities
2012-07-23 00:00:00
debian
debian
[SECURITY] [DSA 2559-1] libexif security update
2012-10-17 18:45:06
amazon
amazon
Medium: libexif
2012-09-22 21:36:00
oraclelinux
oraclelinux
libexif security update
2012-09-11 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 7 package libexif version 0.6.21-alt1
2012-10-27 00:00:00
slackware
slackware
[slackware-security] libexif
2012-07-18 17:04:40
freebsd
freebsd
libexif -- multiple remote vulnerabilities
2012-07-12 00:00:00
gentoo
gentoo
libexif, exif: Multiple vulnerabilities
2014-01-19 00:00:00
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.039 Low
EPSS
Percentile
91.9%
Related for DEBIANCVE:CVE-2012-2837