11 matches found
Gentoo Security Advisory GLSA 200712-17 (exiftags)
The remote host is missing updates announced in advisory GLSA 200712-17. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200712-17 (exiftags)
The remote host is missing updates announced in advisory GLSA 200712-17. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
DSA-1533-2 exiftags
Bulletin has no description...
Debian DSA-1533-2 : exiftags - insufficient input sanitizing
Christian Schmid and Meder Kydyraliev Google Security discovered a number of vulnerabilities in exiftags, a utility for extracting EXIF metadata from JPEG images. The Common Vulnerabilities and Exposures project identified the following three problems : - CVE-2007-6354 Inadequate EXIF property...
[SECURITY] [DSA 1533-1] New exiftags packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-1533-1 [email protected] http://www.debian.org/security/ Devin Carraway March 27, 2008 http://www.debian.org/security/faq -...
GLSA-200712-17 : exiftags: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200712-17 exiftags: Multiple vulnerabilities Meder Kydyraliev Google Security discovered that Exif metadata is not properly sanitized before being processed, resulting in illegal memory access in the postprop and other functions...
CVE-2007-6355
Integer overflow in exiftags before 1.01 has unknown impact and attack vectors, resulting from a "field offset overflow" that triggers an "illegal memory access," a different vulnerability than CVE-2007-6354...
CVE-2007-6355
Integer overflow in exiftags before 1.01 has unknown impact and attack vectors, resulting from a "field offset overflow" that triggers an "illegal memory access," a different vulnerability than CVE-2007-6354...
Integer overflow
Unspecified vulnerability in exiftags before 1.01 has unknown impact and attack vectors, resulting from a "field offset overflow" that triggers an "illegal memory access," a different vulnerability than CVE-2007-6355...
CVE-2007-6355
Integer overflow in exiftags before 1.01 has unknown impact and attack vectors, resulting from a "field offset overflow" that triggers an "illegal memory access," a different vulnerability than CVE-2007-6354...
CVE-2007-6355
CVE-2007-6355 relates to an integer overflow in exiftags prior to version 1.01, with the Debian/GLSA entries detailing multiple CVEs in the same package. The vulnerabilities stem from inadequate input validation in exiftags, including: (1) CVE-2007-6354 — invalid memory access on crafted images, ...