15 matches found
EUVD-2019-2037
Malware in sbrugna...
EUVD-2020-27773
Malware in sbrugna...
SUSE CVE-2018-16554
The ProcessGpsInfo function of the gpsinfo.c file of jhead 3.00 may allow a remote attacker to cause a denial-of-service attack or unspecified other impact via a malicious JPEG file, because of inconsistency between float and double in a sprintf format string during TAGGPSALT handling...
SUSE CVE-2020-6625
jhead through 3.04 has a heap-based buffer over-read in Get32s when called from ProcessGpsInfo in gpsinfo.c...
Updated jhead packages fix security vulnerabilities
Updated jhead package fixes security vulnerabilities: jhead through 3.04 has a heap-based buffer over-read in processDQT in jpgqguess.c CVE-2020-6624. jhead through 3.04 has a heap-based buffer over-read in Get32s when called from ProcessGpsInfo in gpsinfo.c CVE-2020-6625. A heap-based buffer...
Heap overflow
jhead through 3.04 has a heap-based buffer over-read in Get32s when called from ProcessGpsInfo in gpsinfo.c...
UBUNTU-CVE-2020-6625
jhead through 3.04 has a heap-based buffer over-read in Get32s when called from ProcessGpsInfo in gpsinfo.c...
PT-2020-19192 · Jhead +5 · Jhead +5
Name of the Vulnerable Software and Affected Versions: jhead versions prior to 3.04 Description: The issue is related to a heap-based buffer over-read in the Get32s function when called from ProcessGpsInfo in gpsinfo.c. Recommendations: For versions prior to 3.04, update to version 3.04 or later ...
jhead buffer overflow vulnerability
jhead is a tool for modifying JPEG file information. A buffer overflow vulnerability exists in the 'ProcessGpsInfo' function of the gpsinfo.c file in jhead version 3.03. The vulnerability stems from a network system or product performing operations in memory without properly validating data...
CVE-2019-1010301
jhead 3.03 is affected by: Buffer Overflow. The impact is: Denial of service. The component is: gpsinfo.c Line 151 ProcessGpsInfo. The attack vector is: Open a specially crafted JPEG file...
CVE-2019-1010301
jhead 3.03 is affected by: Buffer Overflow. The impact is: Denial of service. The component is: gpsinfo.c Line 151 ProcessGpsInfo. The attack vector is: Open a specially crafted JPEG file...
CVE-2019-1010301
jhead 3.03 is affected by: Buffer Overflow. The impact is: Denial of service. The component is: gpsinfo.c Line 151 ProcessGpsInfo. The attack vector is: Open a specially crafted JPEG file...
CVE-2019-1010301
jhead 3.03 is affected by: Buffer Overflow. The impact is: Denial of service. The component is: gpsinfo.c Line 151 ProcessGpsInfo. The attack vector is: Open a specially crafted JPEG file...
Integer overflow
The ProcessGpsInfo function of the gpsinfo.c file of jhead 3.00 may allow a remote attacker to cause a denial-of-service attack or unspecified other impact via a malicious JPEG file, because there is an integer overflow during a check for whether a location exceeds the EXIF data length. This is...
CVE-2018-17088
CVE-2018-17088 affects jhead (notably the ProcessGpsInfo function in gpsinfo.c of version 3.00). An integer overflow when checking whether a GPS location exceeds the EXIF data length can allow a remote attacker to cause a denial-of-service or other impact via a malicious JPEG file. Public-arc rep...