CVE-2026-42496

Archive::Tar versions before 3.08 for Perl extract symlinks with attacker controlled targets outside the extraction directory. makespecialfile passes the tar header's linkname to symlink without validating it against absolute paths or .. segments. The secure-extract mode check that guards regular...

EUVD-2021-10771

Malware in sbrugna...

EUVD-2018-1478

Malware in sbrugna...

EUVD-2024-27768

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2025-44906

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - jhead v3.08 was discovered to contain a heap-use-after-free via the ProcessFile function at jhead.c. CVE-2025-44906 Note that Nessus relies on the presence of t...

Linux Distros Unpatched Vulnerability : CVE-2024-2824

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in Matthias-Wandel jhead 3.08 and classified as critical. This issue affects the function PrintFormatNumber of the file exif.c. The...

SUSE CVE-2025-44906

jhead v3.08 was discovered to contain a heap-use-after-free via the ProcessFile function at jhead.c...

UBUNTU-CVE-2025-44906

jhead v3.08 was discovered to contain a heap-use-after-free via the ProcessFile function at jhead.c...

PT-2025-23239 · Jhead +1 · Jhead +1

Name of the Vulnerable Software and Affected Versions: jhead version 3.08 Description: A heap-use-after-free issue was discovered in jhead via the ProcessFile function at jhead.c. This issue affects jhead version 3.08. Recommendations: For jhead version 3.08, as a temporary workaround, consider...

CVE-2024-2824

A vulnerability was found in Matthias-Wandel jhead 3.08 and classified as critical. This issue affects the function PrintFormatNumber of the file exif.c. The manipulation leads to heap-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and ma...

DEBIAN-CVE-2024-2824

A vulnerability was found in Matthias-Wandel jhead 3.08 and classified as critical. This issue affects the function PrintFormatNumber of the file exif.c. The manipulation leads to heap-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and ma...

CVE-2024-2824

A vulnerability was found in Matthias-Wandel jhead 3.08 and classified as critical. This issue affects the function PrintFormatNumber of the file exif.c. The manipulation leads to heap-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and ma...

CVE-2024-2824

CVE-2024-2824 affects Matthias-Wandel jhead 3.08. The vulnerability is in the function PrintFormatNumber of exif.c and results in a heap-based buffer overflow. The manipulation can be exploited remotely; a public exploit/POC has been disclosed. No remediation details are provided in the connected...

CVE-2024-2824 Matthias-Wandel jhead exif.c PrintFormatNumber heap-based overflow

A vulnerability was found in Matthias-Wandel jhead 3.08 and classified as critical. This issue affects the function PrintFormatNumber of the file exif.c. The manipulation leads to heap-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and ma...

jhead 安全漏洞

jhead is a tool for modifying information in JPEG files. A security vulnerability exists in Matthias-Wandel jhead version 3.08. An attacker could exploit the vulnerability to cause a heap-based buffer overflow...

PT-2024-22355 · Matthias Wandel +1 · Jhead +1

Name of the Vulnerable Software and Affected Versions: Matthias-Wandel jhead version 3.08 Description: A critical issue affects the PrintFormatNumber function of the file exif.c, leading to a heap-based buffer overflow. The attack may be initiated remotely. Recommendations: For version 3.08,...

CentOS 9 : perl-Encode-3.08-462.el9

The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the perl- Encode-3.08-462.el9 build changelog. - Encode.pm, as distributed in Perl through 5.34.0, allows local users to gain privileges via a Trojan horse Encode::ConfigLocal library in th...

CVE-2024-1786

The CVE-2024-1786 issue affects D-Link DIR-600M C1 with firmware 3.08, where the Telnet Service is vulnerable to a buffer overflow triggered by manipulating the username argument. The vulnerability is remote (attack vector: NETWORK) and described as high severity, with exploitation possible witho...

D-Link DIR-600M C1 Security Breach

The D-Link DIR-600M C1, among others, is a wireless router from China-based AUO D-Link. A security vulnerability exists in the D-Link DIR-600M C1 version 3.08, which stems from a buffer overflow caused by the parameter username in the component Telnet Service...

PT-2024-1919 · D Link · D-Link Dir-600M C1

Name of the Vulnerable Software and Affected Versions: D-Link DIR-600M C1 version 3.08 Description: A critical issue has been found in the Telnet Service component of the affected device, caused by a buffer overflow when manipulating the username argument. This can be exploited remotely,...