SUSE CVE-2020-26208

JHEAD is a simple command line tool for displaying and some manipulation of EXIF header data embedded in Jpeg images from digital cameras. In affected versions there is a heap-buffer-overflow on jhead-3.04/jpgfile.c:285 ReadJpegSections. Crafted jpeg images can be provided to the user resulting i...

UBUNTU-CVE-2020-26208

JHEAD is a simple command line tool for displaying and some manipulation of EXIF header data embedded in Jpeg images from digital cameras. In affected versions there is a heap-buffer-overflow on jhead-3.04/jpgfile.c:285 ReadJpegSections. Crafted jpeg images can be provided to the user resulting i...

jhead 缓冲区错误漏洞

jhead is a tool for modifying information in JPEG files. A buffer error vulnerability exists in JHEAD that stems from the jpgfile.c:285 ReadJpegSections function failing to properly handle memory boundaries when processing JPEG images. An attacker could use this vulnerability to cause a program...

jhead buffer over-read vulnerability

jhead is a command line driven utility for extracting digital camera settings from the Exif format files used by many digital cameras. A buffer over-read vulnerability exists in ReadJpegSections and processSOFn in jpgfile.c in jhead 3.03, which can be exploited by an attacker to cause a denial of...

CVE-2019-19035

jhead 3.03 is affected by: heap-based buffer over-read. The impact is: Denial of service. The component is: ReadJpegSections and processSOFn in jpgfile.c. The attack vector is: Open a specially crafted JPEG file...

Heap overflow

jhead 3.03 is affected by: heap-based buffer over-read. The impact is: Denial of service. The component is: ReadJpegSections and processSOFn in jpgfile.c. The attack vector is: Open a specially crafted JPEG file...

CVE-2019-19035

jhead 3.03 is affected by: heap-based buffer over-read. The impact is: Denial of service. The component is: ReadJpegSections and processSOFn in jpgfile.c. The attack vector is: Open a specially crafted JPEG file...

CVE-2019-19035

jhead 3.03 is affected by: heap-based buffer over-read. The impact is: Denial of service. The component is: ReadJpegSections and processSOFn in jpgfile.c. The attack vector is: Open a specially crafted JPEG file...

CVE-2019-19035

jhead 3.03 is affected by: heap-based buffer over-read. The impact is: Denial of service. The component is: ReadJpegSections and processSOFn in jpgfile.c. The attack vector is: Open a specially crafted JPEG file...

PT-2019-15765 · Matthew Petroff +3 · Jhead +3

Name of the Vulnerable Software and Affected Versions: jhead version 3.03 Description: The issue is related to a heap-based buffer over-read, which can lead to denial of service. The components ReadJpegSections and process SOFn in jpgfile.c are affected. The attack vector involves opening a...