Information on source package jhead

Available versions

ReleaseVersion
jessie1:2.97-1+deb8u1
jessie (security)1:2.97-1+deb8u2
stretch1:3.00-4+deb9u1
buster1:3.00-8
bullseye1:3.04-2
sid1:3.04-2

Open unimportant issues

BugjessiestretchbusterbullseyesidDescription
CVE-2020-6625vulnerablevulnerablevulnerablevulnerablevulnerablejhead through 3.04 has a heap-based buffer over-read in Get32s when ca ...
CVE-2020-6624vulnerablevulnerablevulnerablevulnerablevulnerablejhead through 3.04 has a heap-based buffer over-read in process_DQT in ...
CVE-2019-19035vulnerablevulnerablevulnerablefixedfixedjhead 3.03 is affected by: heap-based buffer over-read. The impact is: ...
CVE-2019-1010302fixedvulnerablevulnerablefixedfixedjhead 3.03 is affected by: Incorrect Access Control. The impact is: De ...
CVE-2019-1010301fixedvulnerablevulnerablefixedfixedjhead 3.03 is affected by: Buffer Overflow. The impact is: Denial of s ...
CVE-2018-6612vulnerablevulnerablefixedfixedfixedAn integer underflow bug in the process_EXIF function of the exif.c fi ...

Resolved issues

BugDescription
CVE-2018-17088The ProcessGpsInfo function of the gpsinfo.c file of jhead 3.00 may al ...
CVE-2018-16554The ProcessGpsInfo function of the gpsinfo.c file of jhead 3.00 may al ...
CVE-2016-3822exif.c in Matthias Wandel jhead 2.87, as used in libjhead in Android 4 ...
CVE-2008-4641The DoCommand function in jhead.c in Matthias Wandel jhead 2.84 and ea ...
CVE-2008-4640The DoCommand function in jhead.c in Matthias Wandel jhead 2.84 and ea ...
CVE-2008-4639jhead.c in Matthias Wandel jhead 2.84 and earlier allows local users t ...
CVE-2008-4575Buffer overflow in the DoCommand function in jhead before 2.84 might a ...

Security announcements

DSA / DLADescription
DLA-2054-1jhead - security update
DSA-3825-1jhead - security update
DLA-864-1jhead - security update

Search for package or bug name: Reporting problems