| Release | Version |
|---|---|
| bullseye | 1:3.04-6+deb11u1 |
| bookworm | 1:3.06.0.1-6 |
| trixie | 1:3.08-3 |
| sid | 1:3.08-3 |
| Bug | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|
| CVE-2025-44906 | undetermined | undetermined | undetermined | undetermined | jhead v3.08 was discovered to contain a heap-use-after-free via the Pr ... |
| CVE-2022-28550 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | Matthias-Wandel/jhead jhead 3.06 is vulnerable to Buffer Overflow via ... |
| Bug | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|
| CVE-2024-2824 | vulnerable | vulnerable | vulnerable | vulnerable | A vulnerability was found in Matthias-Wandel jhead 3.08 and classified ... |
| CVE-2021-28278 | vulnerable | fixed | fixed | fixed | A Heap-based Buffer Overflow vulnerability exists in jhead 3.04 and 3. ... |
| CVE-2021-28277 | vulnerable | fixed | fixed | fixed | A Heap-based Buffer Overflow vulnerabilty exists in jhead 3.04 and 3.0 ... |
| CVE-2021-28276 | vulnerable | fixed | fixed | fixed | A Denial of Service vulnerability exists in jhead 3.04 and 3.05 via a ... |
| CVE-2021-28275 | vulnerable | fixed | fixed | fixed | A Denial of Service vulnerability exists in jhead 3.04 and 3.05 due to ... |
| CVE-2020-28840 | vulnerable | fixed | fixed | fixed | Buffer Overflow vulnerability in jpgfile.c in Matthias-Wandel jhead ve ... |
| CVE-2020-6625 | vulnerable | vulnerable | vulnerable | vulnerable | jhead through 3.04 has a heap-based buffer over-read in Get32s when ca ... |
| CVE-2020-6624 | vulnerable | vulnerable | vulnerable | vulnerable | jhead through 3.04 has a heap-based buffer over-read in process_DQT in ... |
| Bug | Description |
|---|---|
| CVE-2022-41751 | Jhead 3.06.0.1 allows attackers to execute arbitrary OS commands by pl ... |
| CVE-2021-34055 | jhead 3.06 is vulnerable to Buffer Overflow via exif.c in function Put ... |
| CVE-2021-3496 | A heap-based buffer overflow was found in jhead in version 3.06 in Get ... |
| CVE-2020-26208 | JHEAD is a simple command line tool for displaying and some manipulati ... |
| CVE-2019-1010302 | jhead 3.03 is affected by: Incorrect Access Control. The impact is: De ... |
| CVE-2019-1010301 | jhead 3.03 is affected by: Buffer Overflow. The impact is: Denial of s ... |
| CVE-2019-19035 | jhead 3.03 is affected by: heap-based buffer over-read. The impact is: ... |
| CVE-2018-17088 | The ProcessGpsInfo function of the gpsinfo.c file of jhead 3.00 may al ... |
| CVE-2018-16554 | The ProcessGpsInfo function of the gpsinfo.c file of jhead 3.00 may al ... |
| CVE-2018-6612 | An integer underflow bug in the process_EXIF function of the exif.c fi ... |
| CVE-2016-3822 | exif.c in Matthias Wandel jhead 2.87, as used in libjhead in Android 4 ... |
| CVE-2008-4641 | The DoCommand function in jhead.c in Matthias Wandel jhead 2.84 and ea ... |
| CVE-2008-4640 | The DoCommand function in jhead.c in Matthias Wandel jhead 2.84 and ea ... |
| CVE-2008-4639 | jhead.c in Matthias Wandel jhead 2.84 and earlier allows local users t ... |
| CVE-2008-4575 | Buffer overflow in the DoCommand function in jhead before 2.84 might a ... |
| DSA / DLA | Description |
|---|---|
| DSA-5294-1 | jhead - security update |
| DLA-3219-1 | jhead - security update |
| DLA-2054-1 | jhead - security update |
| DSA-3825-1 | jhead - security update |
| DLA-864-1 | jhead - security update |