Information on source package libexif

Available versions

ReleaseVersion
wheezy0.6.20-3
jessie0.6.21-2
stretch0.6.21-2
buster0.6.21-4
sid0.6.21-4

Open issues

BugwheezyjessiestretchbustersidDescription
CVE-2017-7544vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedlibexif through 0.6.21 is vulnerable to out-of-bounds heap read ...
CVE-2016-6328vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixed

Resolved issues

BugDescription
CVE-2012-2841Integer underflow in the exif_entry_get_value function in exif-entry.c ...
CVE-2012-2840Off-by-one error in the exif_convert_utf16_to_utf8 function in ...
CVE-2012-2837The mnote_olympus_entry_get_value function in ...
CVE-2012-2836The exif_data_load_data function in exif-data.c in the EXIF Tag ...
CVE-2012-2814Buffer overflow in the exif_entry_format_value function in ...
CVE-2012-2813The exif_convert_utf16_to_utf8 function in exif-entry.c in the EXIF ...
CVE-2012-2812The exif_entry_get_value function in exif-entry.c in the EXIF Tag ...
CVE-2009-3895Heap-based buffer overflow in the exif_entry_fix function (aka the tag ...
CVE-2007-6352Integer overflow in libexif 0.6.16 and earlier allows ...
CVE-2007-6351libexif 0.6.16 and earlier allows context-dependent attackers to cause ...
CVE-2007-2645Integer overflow in the exif_data_load_data_entry function in ...
CVE-2006-4168Integer overflow in the exif_data_load_data_entry function in ...
CVE-2005-0664Buffer overflow in the EXIF library (libexif) 0.6.9 does not properly ...

Security announcements

DSA / DLADescription
DSA-2559-1libexif - several
DSA-1487-1libexif - several vulnerabilities
DSA-1487-1libexif - several vulnerabilities
DSA-1310-1libexif
DSA-1310-1libexif
DSA-709-1libexif - buffer overflow

Search for package or bug name: Reporting problems