8 matches found
Gentoo Security Advisory GLSA 200712-17 (exiftags)
The remote host is missing updates announced in advisory GLSA 200712-17. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 200712-17 (exiftags)
The remote host is missing updates announced in advisory GLSA 200712-17. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
DSA-1533-2 exiftags
Bulletin has no description...
Debian DSA-1533-2 : exiftags - insufficient input sanitizing
Christian Schmid and Meder Kydyraliev Google Security discovered a number of vulnerabilities in exiftags, a utility for extracting EXIF metadata from JPEG images. The Common Vulnerabilities and Exposures project identified the following three problems : - CVE-2007-6354 Inadequate EXIF property...
[SECURITY] [DSA 1533-1] New exiftags packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-1533-1 [email protected] http://www.debian.org/security/ Devin Carraway March 27, 2008 http://www.debian.org/security/faq -...
GLSA-200712-17 : exiftags: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200712-17 exiftags: Multiple vulnerabilities Meder Kydyraliev Google Security discovered that Exif metadata is not properly sanitized before being processed, resulting in illegal memory access in the postprop and other functions...
CVE-2007-6356
exiftags before 1.01 allows attackers to cause a denial of service infinite loop via recursive IFD references in the EXIF data in a JPEG image...
CVE-2007-6356
The CVE-2007-6356 issue affects exiftags prior to version 1.01, where cyclical EXIF IFD references in JPEG metadata can cause a denial of service (infinite loop). Public references show remediation across Debian/Etch and Sarge updates fixing these issues (0.98-1.1+etch1 and 0.98-1.1+0sarge1; late...