Information on source package libexif

Available versions

ReleaseVersion
stretch0.6.21-2+deb9u4
stretch (security)0.6.21-2+deb9u1
buster0.6.21-5.1+deb10u4
buster (security)0.6.21-5.1+deb10u1
bullseye0.6.22-2
sid0.6.22-2

Resolved issues

BugDescription
CVE-2020-13114An issue was discovered in libexif before 0.6.22. An unrestricted size ...
CVE-2020-13113An issue was discovered in libexif before 0.6.22. Use of uninitialized ...
CVE-2020-13112An issue was discovered in libexif before 0.6.22. Several buffer over- ...
CVE-2020-12767exif_entry_get_value in exif-entry.c in libexif 0.6.21 has a divide-by ...
CVE-2020-0198In exif_data_load_data_content of exif-data.c, there is a possible UBS ...
CVE-2020-0182In exif_entry_get_value of exif-entry.c, there is a possible out of bo ...
CVE-2020-0181In exif_data_load_data_thumbnail of exif-data.c, there is a possible d ...
CVE-2020-0093In exif_data_save_data_entry of exif-data.c, there is a possible out o ...
CVE-2019-9278In libexif, there is a possible out of bounds write due to an integer ...
CVE-2018-20030An error when processing the EXIF_IFD_INTEROPERABILITY and EXIF_IFD_EX ...
CVE-2017-7544libexif through 0.6.21 is vulnerable to out-of-bounds heap read vulner ...
CVE-2016-6328A vulnerability was found in libexif. An integer overflow when parsing ...
CVE-2012-2841Integer underflow in the exif_entry_get_value function in exif-entry.c ...
CVE-2012-2840Off-by-one error in the exif_convert_utf16_to_utf8 function in exif-en ...
CVE-2012-2837The mnote_olympus_entry_get_value function in olympus/mnote-olympus-en ...
CVE-2012-2836The exif_data_load_data function in exif-data.c in the EXIF Tag Parsin ...
CVE-2012-2814Buffer overflow in the exif_entry_format_value function in exif-entry. ...
CVE-2012-2813The exif_convert_utf16_to_utf8 function in exif-entry.c in the EXIF Ta ...
CVE-2012-2812The exif_entry_get_value function in exif-entry.c in the EXIF Tag Pars ...
CVE-2009-3895Heap-based buffer overflow in the exif_entry_fix function (aka the tag ...
CVE-2007-6352Integer overflow in libexif 0.6.16 and earlier allows context-dependen ...
CVE-2007-6351libexif 0.6.16 and earlier allows context-dependent attackers to cause ...
CVE-2007-2645Integer overflow in the exif_data_load_data_entry function in exif-dat ...
CVE-2006-4168Integer overflow in the exif_data_load_data_entry function in libexif/ ...
CVE-2005-0664Buffer overflow in the EXIF library (libexif) 0.6.9 does not properly ...

Security announcements

DSA / DLADescription
DLA-2249-1libexif - security update
DLA-2222-1libexif - security update
DLA-2214-1libexif - security update
DLA-2100-1libexif - security update
DSA-4618-1libexif - security update
DSA-2559-1libexif - several
DSA-1487-1libexif - several vulnerabilities
DSA-1310-1libexif
DSA-709-1libexif - buffer overflow

Search for package or bug name: Reporting problems