Lucene search
+L

5 matches found

osv
osv
added 2020/01/09 1:15 a.m.8 views

CVE-2020-6625

jhead through 3.04 has a heap-based buffer over-read in Get32s when called from ProcessGpsInfo in gpsinfo.c...

7.1CVSS7.7AI score
Exploits0References4
nessus
nessus
added 2018/09/25 12:0 a.m.27 views

openSUSE Security Update : jhead (openSUSE-2018-1044)

This update for jhead fixes the following security issues : - CVE-2016-3822: jhead remote attackers to execute arbitrary code or cause a denial of service out-of-bounds access via crafted EXIF data bsc1108480. - CVE-2018-16554: The ProcessGpsInfo function may have allowed a remote attacker to cau...

7.8CVSS6.7AI score0.01766EPSS
Exploits1References3
opensuse
opensuse
added 2018/09/24 3:15 p.m.88 views

Security update for jhead (moderate)

This update for jhead fixes the following security issues: - CVE-2016-3822: jhead remote attackers to execute arbitrary code or cause a denial of service out-of-bounds access via crafted EXIF data bsc1108480. - CVE-2018-16554: The ProcessGpsInfo function may have allowed a remote attacker to caus...

7.5CVSS4.4AI score0.01766EPSS
Exploits1References1
ubuntucve
ubuntucve
added 2018/09/16 5:29 p.m.29 views

CVE-2018-17088

The ProcessGpsInfo function of the gpsinfo.c file of jhead 3.00 may allow a remote attacker to cause a denial-of-service attack or unspecified other impact via a malicious JPEG file, because there is an integer overflow during a check for whether a location exceeds the EXIF data length. This is...

7.8CVSS6.8AI score0.01557EPSS
Exploits1References2
prion
prion
added 2018/09/16 5:29 p.m.24 views

Integer overflow

The ProcessGpsInfo function of the gpsinfo.c file of jhead 3.00 may allow a remote attacker to cause a denial-of-service attack or unspecified other impact via a malicious JPEG file, because there is an integer overflow during a check for whether a location exceeds the EXIF data length. This is...

6.8CVSS7.7AI score0.01766EPSS
Exploits2References2Affected Software1
Rows per page
Query Builder