8 matches found
Gentoo Security Advisory GLSA 200712-17 (exiftags)
The remote host is missing updates announced in advisory GLSA 200712-17. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200712-17 (exiftags)
The remote host is missing updates announced in advisory GLSA 200712-17. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
DSA-1533-2 exiftags
Bulletin has no description...
Debian DSA-1533-2 : exiftags - insufficient input sanitizing
Christian Schmid and Meder Kydyraliev Google Security discovered a number of vulnerabilities in exiftags, a utility for extracting EXIF metadata from JPEG images. The Common Vulnerabilities and Exposures project identified the following three problems : - CVE-2007-6354 Inadequate EXIF property...
[SECURITY] [DSA 1533-1] New exiftags packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-1533-1 [email protected] http://www.debian.org/security/ Devin Carraway March 27, 2008 http://www.debian.org/security/faq -...
GLSA-200712-17 : exiftags: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200712-17 exiftags: Multiple vulnerabilities Meder Kydyraliev Google Security discovered that Exif metadata is not properly sanitized before being processed, resulting in illegal memory access in the postprop and other functions...
CVE-2007-6354
Unspecified vulnerability in exiftags before 1.01 has unknown impact and attack vectors, resulting from a "field offset overflow" that triggers an "illegal memory access," a different vulnerability than CVE-2007-6355...
CVE-2007-6354
CVE-2007-6354 affects exiftags prior to 1.01, due to a field offset overflow that can cause an illegal memory access. The issue is described as potentially enabling heap corruption and arbitrary code execution, with Debian/OpenVAS advisories listing fixes in older exiftags packages (e.g., 0.98-re...