Lucene search
PRIOn knowledge basePRION:CVE-2022-41751HistoryOct 17, 2022 - 6:15 p.m.
Design/Logic Flaw
2022-10-1718:15:00
PRIOn knowledge base
www.prio-n.com
1
jhead vulnerability
arbitrary commands
os command execution
jpeg security
filename manipulation
Jhead 3.06.0.1 allows attackers to execute arbitrary OS commands by placing them in a JPEG filename and then using the regeneration -rgt50 option.
References
github.com/Matthias-Wandel/jhead
github.com/Matthias-Wandel/jhead/blob/63ce118c6a59ea64ac357236a11a47aaf569d622/jhead.c
github.com/Matthias-Wandel/jhead/pull/57
lists.debian.org/debian-lts-announce/2022/12/msg00004.html
lists.fedoraproject.org/archives/list/[email protected]/message/5NM6FET4ZNWV4EQGKZTLZFWTNVODGVOK/
lists.fedoraproject.org/archives/list/[email protected]/message/EG26AD7KJAY5B6L6OERSGL4FRXJE3GOB/
lists.fedoraproject.org/archives/list/[email protected]/message/TAVB3ZX7E5ULEXESU5NXZIAHY6CVGCHB/
www.debian.org/security/2022/dsa-5294
Related
nessus
nessus
Fedora 35 : jhead (2022-1d9133bc8e)
2022-12-22 00:00:00
openSUSE 15 Security Update : jhead (openSUSE-SU-2023:0054-1)
2023-02-21 00:00:00
Fedora 36 : jhead (2022-61ec901852)
2022-12-22 00:00:00
suse
suse
Security update for jhead (important)
2022-10-31 00:00:00
Security update for jhead (important)
2022-10-31 00:00:00
openvas
openvas
Fedora: Security Advisory for jhead (FEDORA-2022-61ec901852)
2022-10-27 00:00:00
Fedora: Security Advisory for jhead (FEDORA-2022-1d9133bc8e)
2022-10-27 00:00:00
openSUSE: Security Advisory for jhead (openSUSE-SU-2023:0371-1)
2024-03-04 00:00:00
fedora
fedora
[SECURITY] Fedora 36 Update: jhead-3.06.0.1-5.fc36
2022-10-26 17:29:09
[SECURITY] Fedora 37 Update: jhead-3.06.0.1-5.fc37
2022-11-10 22:48:29
[SECURITY] Fedora 35 Update: jhead-3.06.0.1-5.fc35
2022-10-26 17:35:53
cve
cve
CVE-2022-41751
2022-10-17 18:15:12
veracode
veracode
OS Command Injection
2022-11-23 05:13:03
ubuntucve
ubuntucve
CVE-2022-41751
2022-10-17 00:00:00
debiancve
debiancve
CVE-2022-41751
2022-10-17 18:15:12
nvd
nvd
CVE-2022-41751
2022-10-17 18:15:12
osv
osv
CVE-2022-41751
2022-10-17 18:15:12
jhead - security update
2022-12-04 00:00:00
jhead - security update
2022-12-04 00:00:00
cvelist
cvelist
CVE-2022-41751
2022-10-17 00:00:00
ubuntu
ubuntu
Jhead vulnerabilities
2023-05-25 00:00:00
debian
debian
[SECURITY] [DLA 3219-1] jhead security update
2022-12-04 13:33:42
[SECURITY] [DSA 5294-1] jhead security update
2022-12-04 13:43:10
gentoo
gentoo
JHead: Multiple Vulnerabilities
2024-06-22 00:00:00