11 matches found
Ubuntu: Security Advisory (USN-6108-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-6108-1: Jhead vulnerabilities
It was discovered that Jhead did not properly handle certain crafted images while rotating them. An attacker could possibly use this issue to crash Jhead, resulting in a denial of service. CVE-2021-34055 Kyle Brown discovered that Jhead did not properly handle certain crafted images while...
Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS / 22.04 LTS : Jhead vulnerabilities (USN-6108-1)
The remote Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS / 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6108-1 advisory. It was discovered that Jhead did not properly handle certain crafted images while rotating them. An attacker could...
Debian DSA-5294-1 : jhead - security update
The remote Debian 11 host has a package installed that is affected by multiple vulnerabilities as referenced in the dsa-5294 advisory. Jhead, a tool for manipulating EXIF data embedded in JPEG images, allowed attackers to execute arbitrary OS commands by placing them in a JPEG filename and then...
[SECURITY] [DLA 3219-1] jhead security update
Debian LTS Advisory DLA-3219-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany December 04, 2022 https://wiki.debian.org/LTS Package : jhead Version : 1:3.00-8+deb10u1 CVE ID : CVE-2021-34055 CVE-2022-41751 Debian Bug : 1024272 1022028 Jhead, a tool for manipulati...
openSUSE 15 Security Update : jhead (openSUSE-SU-2022:10202-1)
The remote SUSE Linux SUSE15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE-SU-2022:10202-1 advisory. - jhead 3.06 is vulnerable to Buffer Overflow via exif.c in function Put16u. CVE-2021-34055 Note that Nessus has not tested for this issue but has...
OPENSUSE-SU-2022:10202-1 Security update for jhead
This update for jhead fixes the following issues: CVE-2021-34055: Fix out of bounds write in ClearOrientation due to unchecked error boo1205167...
Security update for jhead (important)
openSUSE Security Update: Security update for jhead Announcement ID: openSUSE-SU-2022:10203-1 Rating: important References: 1205167 Cross-References: CVE-2021-34055 CVSS scores: CVE-2021-34055 NVD : 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: openSUSE Backports SLE-15-SP3 ...
Security update for jhead (important)
openSUSE Security Update: Security update for jhead Announcement ID: openSUSE-SU-2022:10202-1 Rating: important References: 1205167 Cross-References: CVE-2021-34055 CVSS scores: CVE-2021-34055 NVD : 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: openSUSE Backports SLE-15-SP4 ...
CVE-2021-34055
jhead 3.06 is vulnerable to Buffer Overflow via exif.c in function Put16u...
CVE-2021-34055
CVE-2021-34055 affects jhead (EXIF JPEG header tool). A buffer overflow in exif.c Put16u and related handling can enable crafted JPEGs to trigger overflow, potentially allowing command execution or denial of service. Affected releases include older jhead packages across Debian/Ubuntu/DLSA advisor...