165 matches found
AlmaLinux 8 : libexif (ALSA-2026:20929)
The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:20929 advisory. libexif: libexif: Information disclosure and crashes via integer overflow in Nikon MakerNote handling CVE-2026-40385 libexif: libexif: Denial of Service...
libexif: libexif: Information disclosure and crashes via integer overflow in Nikon MakerNote handling
A flaw was found in libexif. A local attacker on a 32-bit system could exploit an unsigned 32-bit integer overflow vulnerability in the Nikon MakerNote handling. This could lead to application crashes or the disclosure of sensitive information...
Moderate: Red Hat Security Advisory: libexif security update
An update for libexif is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...
libexif: libexif: Denial of Service and information disclosure via integer underflow in MakerNote decoding
A flaw was found in libexif. An integer underflow vulnerability in the size checking mechanism for Fuji and Olympus MakerNote decoding could allow attackers to exploit programs using libexif. This could lead to a Denial of Service DoS by crashing the program or result in information disclosure,...
ALSA-2026:20929 Moderate: libexif security update
The libexif packages provide a library for extracting extra information from image files. Security Fixes: libexif: libexif: Information disclosure and crashes via integer overflow in Nikon MakerNote handling CVE-2026-40385 libexif: libexif: Denial of Service and information disclosure via integer...
Moderate: libexif security update
The libexif packages provide a library for extracting extra information from image files. Security Fixes: libexif: libexif: Information disclosure and crashes via integer overflow in Nikon MakerNote handling CVE-2026-40385 libexif: libexif: Denial of Service and information disclosure via integer...
CLSA-2026-1777946242 php: Fix of 13 CVEs
CVE-2018-14883: fix int overflow leading to heap overflow in exifthumbnailextract - CVE-2019-6977: fix imagecolormatch out-of-bounds write on heap in GD - CVE-2019-9022: fix memcpy with negative length via crafted DNS response - CVE-2019-9640: fix invalid read in exifprocessSOFn - CVE-2019-11042:...
CLSA-2026-1776791358 libexif: Fix of 3 CVEs
CVE-2026-32775: fix buffer overwrite via integer underflow in MakerNote entry value handling - CVE-2026-40385: fix unsigned 32-bit integer overflow in Nikon MakerNote handling - CVE-2026-40386: fix integer underflow in Fuji/Olympus MakerNote size checks...
CLSA-2026-1776769506 libexif: Fix of 3 CVEs
CVE-2026-32775: fix buffer overwrite via integer underflow in MakerNote entry value handling - CVE-2026-40385: fix unsigned 32-bit integer overflow in Nikon MakerNote handling - CVE-2026-40386: fix integer underflow in Fuji/Olympus MakerNote size checks...
CLSA-2026-1776768816 libexif: Fix of 3 CVEs
CVE-2026-32775: fix buffer overwrite via integer underflow in MakerNote entry value handling - CVE-2026-40385: fix unsigned 32-bit integer overflow in Nikon MakerNote handling - CVE-2026-40386: fix integer underflow in Fuji/Olympus MakerNote size checks...
JLSEC-2026-152 In libexif through 0.6.25, an integer underflow in size checking for Fuji and Olympus MakerNote...
In libexif through 0.6.25, an integer underflow in size checking for Fuji and Olympus MakerNote decoding could be used by attackers to crash or leak information out of libexif-using programs...
JLSEC-2026-151 In libexif through 0.6.25, an unsigned 32bit integer overflow in Nikon MakerNote handling could...
In libexif through 0.6.25, an unsigned 32bit integer overflow in Nikon MakerNote handling could be used by local attackers to cause crashes or information leaks. This only affects 32bit systems...
OESA-2026-1987 libexif security update
Most digital cameras produce EXIF files, which are JPEG files with extra tags that contain information about the image. The EXIF library allows you to parse an EXIF file and read the data from those tags. Security Fixes: In libexif through 0.6.25, an unsigned 32bit integer overflow in Nikon...
[slackware-security] libexif
New libexif packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libexif-0.6.26-i586-1slack15.0.txz: Upgraded. This update fixes security issues: An unsigned integer underflow in Fuji and Olympus...
SUSE CVE-2026-40385
In libexif through 0.6.25, an unsigned 32bit integer overflow in Nikon MakerNote handling could be used by local attackers to cause crashes or information leaks. This only affects 32bit systems...
SUSE CVE-2026-40386
In libexif through 0.6.25, an integer underflow in size checking for Fuji and Olympus MakerNote decoding could be used by attackers to crash or leak information out of libexif-using programs...
CVE-2026-40386
A flaw was found in libexif. An integer underflow vulnerability in the size checking mechanism for Fuji and Olympus MakerNote decoding could allow attackers to exploit programs using libexif. This could lead to a Denial of Service DoS by crashing the program or result in information disclosure,...
CVE-2026-40385
A flaw was found in libexif. A local attacker on a 32-bit system could exploit an unsigned 32-bit integer overflow vulnerability in the Nikon MakerNote handling. This could lead to application crashes or the disclosure of sensitive information. Mitigation On 32-bit systems, avoid processing...
EUVD-2026-21734
In libexif through 0.6.25, an integer underflow in size checking for Fuji and Olympus MakerNote decoding could be used by attackers to crash or leak information out of libexif-using programs...
EUVD-2026-21732
In libexif through 0.6.25, an unsigned 32bit integer overflow in Nikon MakerNote handling could be used by local attackers to cause crashes or information leaks. This only affects 32bit systems...