Lucene search
SuseOPENSUSE-SU-2018:3481-1HistoryOct 26, 2018 - 2:42 p.m.
Security update for jhead (moderate)
2018-10-2614:42:21
lists.opensuse.org
548
0.005 Low
EPSS
Percentile
77.0%
This update for jhead fixes the following issues:
Security issues fixed:
- CVE-2018-17088: The ProcessGpsInfo function may have allowed a remote
attacker to cause a denial-of-service attack or unspecified other impact
via a malicious JPEG file, because there is an integer overflow during a
check for whether a location exceeds the EXIF data length. This is
analogous to the CVE-2016-3822 integer overflow in exif.c. (boo#1108672) - CVE-2018-16554: The ProcessGpsInfo function may have allowed a remote
attacker to cause a denial-of-service attack or unspecified other impact
via a malicious JPEG file, because of inconsistency between float and
double in a sprintf format string during TAG_GPS_ALT handling.
(boo#1108480)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE Backports SLE | 15 | aarch64 | jhead | <Β 3.00-bp150.3.7.1 | jhead-3.00-bp150.3.7.1.aarch64.rpm |
| openSUSE Leap | 15.0 | x86_64 | jhead-debuginfo | <Β 3.00-lp150.3.6.1 | jhead-debuginfo-3.00-lp150.3.6.1.x86_64.rpm |
| openSUSE Leap | 42.3 | x86_64 | jhead-debugsource | <Β 3.00-14.1 | jhead-debugsource-3.00-14.1.x86_64.rpm |
| openSUSE Leap | 15.0 | x86_64 | jhead | <Β 3.00-lp150.3.6.1 | jhead-3.00-lp150.3.6.1.x86_64.rpm |
| openSUSE Leap | 42.3 | i586 | jhead-debugsource | <Β 3.00-14.1 | jhead-debugsource-3.00-14.1.i586.rpm |
| openSUSE Backports SLE | 15 | ppc64le | jhead | <Β 3.00-bp150.3.7.1 | jhead-3.00-bp150.3.7.1.ppc64le.rpm |
| openSUSE Backports SLE | 15 | s390x | jhead | <Β 3.00-bp150.3.7.1 | jhead-3.00-bp150.3.7.1.s390x.rpm |
| openSUSE Backports SLE | 15 | x86_64 | jhead | <Β 3.00-bp150.3.7.1 | jhead-3.00-bp150.3.7.1.x86_64.rpm |
| openSUSE Leap | 42.3 | i586 | jhead-debuginfo | <Β 3.00-14.1 | jhead-debuginfo-3.00-14.1.i586.rpm |
| openSUSE Leap | 42.3 | x86_64 | jhead | <Β 3.00-14.1 | jhead-3.00-14.1.x86_64.rpm |
Related
nessus
nessus
openSUSE Security Update : jhead (openSUSE-2019-858)
2019-03-27 00:00:00
openSUSE Security Update : jhead (openSUSE-2018-1292)
2018-10-29 00:00:00
openSUSE Security Update : jhead (openSUSE-2018-1044)
2018-09-25 00:00:00
ubuntucve
ubuntucve
debiancve
debiancve
cve
cve
cvelist
cvelist
nvd
nvd
prion
prion
openvas
openvas
openSUSE: Security Advisory for jhead (openSUSE-SU-2018:3481-1)
2018-10-27 00:00:00
Mageia: Security Advisory (MGASA-2018-0457)
2022-01-28 00:00:00
openSUSE: Security Advisory for jhead (openSUSE-SU-2018:2827-1)
2018-09-25 00:00:00
mageia
mageia
Updated jhead package fixes security vulnerabilities
2018-11-18 01:23:26
Updated jhead packages fix security vulnerability
2017-04-04 09:44:05
suse
suse
Security update for jhead (moderate)
2018-09-24 15:15:30
Security update for jhead (moderate)
2021-05-19 00:00:00
Security update for jhead (moderate)
2021-05-16 00:00:00
osv
osv
jhead - security update
2019-12-31 00:00:00
jhead - security update
2017-03-31 00:00:00
jhead - security update
2017-03-22 00:00:00
debian
debian
[SECURITY] [DLA 2054-1] jhead security update
2019-12-31 18:15:10
[SECURITY] [DLA 864-1] jhead security update
2017-03-22 22:08:42
[SECURITY] [DSA 3825-1] jhead security update
2017-03-31 18:01:11
fedora
fedora
[SECURITY] Fedora 29 Update: jhead-3.03-4.fc29
2019-08-14 01:42:53
veracode
veracode
Denial Of Service (DoS)
2020-12-06 03:31:09
androidsecurity
androidsecurity
Android Security BulletinβAugust 2016
2016-08-01 00:00:00