Information on source package jhead

Available versions

ReleaseVersion
buster1:3.00-8
buster (security)1:3.00-8+deb10u1
bullseye1:3.04-6
bullseye (security)1:3.04-6+deb11u1
bookworm1:3.06.0.1-6
sid1:3.06.0.1-6

Open unimportant issues

BugbusterbullseyebookwormsidDescription
CVE-2021-28278vulnerablevulnerablefixedfixedA Heap-based Buffer Overflow vulnerability exists in jhead 3.04 and 3. ...
CVE-2021-28277vulnerablevulnerablefixedfixedA Heap-based Buffer Overflow vulnerabilty exists in jhead 3.04 and 3.0 ...
CVE-2021-28276vulnerablevulnerablevulnerablevulnerableA Denial of Service vulnerability exists in jhead 3.04 and 3.05 via a ...
CVE-2021-28275vulnerablevulnerablefixedfixedA Denial of Service vulnerability exists in jhead 3.04 and 3.05 due to ...
CVE-2021-3496vulnerablefixedfixedfixedA heap-based buffer overflow was found in jhead in version 3.06 in Get ...
CVE-2020-26208vulnerablefixedfixedfixedJHEAD is a simple command line tool for displaying and some manipulati ...
CVE-2020-6625vulnerablevulnerablevulnerablevulnerablejhead through 3.04 has a heap-based buffer over-read in Get32s when ca ...
CVE-2020-6624vulnerablevulnerablevulnerablevulnerablejhead through 3.04 has a heap-based buffer over-read in process_DQT in ...
CVE-2019-1010302vulnerablefixedfixedfixedjhead 3.03 is affected by: Incorrect Access Control. The impact is: De ...
CVE-2019-1010301vulnerablefixedfixedfixedjhead 3.03 is affected by: Buffer Overflow. The impact is: Denial of s ...
CVE-2019-19035vulnerablefixedfixedfixedjhead 3.03 is affected by: heap-based buffer over-read. The impact is: ...

Resolved issues

BugDescription
CVE-2022-41751Jhead 3.06.0.1 allows attackers to execute arbitrary OS commands by pl ...
CVE-2021-34055jhead 3.06 is vulnerable to Buffer Overflow via exif.c in function Put ...
CVE-2018-17088The ProcessGpsInfo function of the gpsinfo.c file of jhead 3.00 may al ...
CVE-2018-16554The ProcessGpsInfo function of the gpsinfo.c file of jhead 3.00 may al ...
CVE-2018-6612An integer underflow bug in the process_EXIF function of the exif.c fi ...
CVE-2016-3822exif.c in Matthias Wandel jhead 2.87, as used in libjhead in Android 4 ...
CVE-2008-4641The DoCommand function in jhead.c in Matthias Wandel jhead 2.84 and ea ...
CVE-2008-4640The DoCommand function in jhead.c in Matthias Wandel jhead 2.84 and ea ...
CVE-2008-4639jhead.c in Matthias Wandel jhead 2.84 and earlier allows local users t ...
CVE-2008-4575Buffer overflow in the DoCommand function in jhead before 2.84 might a ...

Security announcements

DSA / DLADescription
DSA-5294-1jhead - security update
DLA-3219-1jhead - security update
DLA-2054-1jhead - security update
DSA-3825-1jhead - security update
DLA-864-1jhead - security update

Search for package or bug name: Reporting problems