Fedora 10 Update: jhead-2.86-1.fc10
Summary
Jhead displays and manipulates the non-image portions of EXIF formatted
JPEG images, such as the images produced by most digital cameras.
* fixes "CVE-2008-4640 jhead: arbitrary file deletion" (#468056) * fixes
"CVE-2008-4641 jhead: command exection caused by incorrect handling of the shell
escapes" (#468057)
* Mon Feb 16 2009 Adrian Reber
- updated to 2.86
- fixes "CVE-2008-4640 jhead: arbitrary file deletion" (#468056)
- fixes "CVE-2008-4641 jhead: command exection caused by
incorrect handling of the shell escapes" (#468057)
- fixes "build ignores optflags" (#485697)
[ 1 ] Bug #468056 - CVE-2008-4640 jhead: arbitrary file deletion
https://bugzilla.redhat.com/show_bug.cgi?id=468056
[ 2 ] Bug #468057 - CVE-2008-4641 jhead: command exection caused by incorrect handling of the shell escapes
https://bugzilla.redhat.com/show_bug.cgi?id=468057
su -c 'yum update jhead' at the command line.
For more information, refer to "Managing Software with yum",
available at .
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
Fedora-package-announce mailing list
Fedora-package-announce@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-package-announce
FEDORA-2009-1824 2009-02-17 14:51:58 Product : Fedora 10 Version : 2.86 Release : 1.fc10 URL : https://www.sentex.ca/~mwandel/jhead/ Summary : Tool for displaying EXIF data embedded in JPEG images Description : Jhead displays and manipulates the non-image portions of EXIF formatted JPEG images, such as the images produced by most digital cameras. * fixes "CVE-2008-4640 jhead: arbitrary file deletion" (#468056) * fixes "CVE-2008-4641 jhead: command exection caused by incorrect handling of the shell escapes" (#468057) * Mon Feb 16 2009 Adrian Reber - 2.86-1 - updated to 2.86 - fixes "CVE-2008-4640 jhead: arbitrary file deletion" (#468056) - fixes "CVE-2008-4641 jhead: command exection caused by incorrect handling of the shell escapes" (#468057) - fixes "build ignores optflags" (#485697) [ 1 ] Bug #468056 - CVE-2008-4640 jhead: arbitrary file deletion https://bugzilla.redhat.com/show_bug.cgi?id=468056 [ 2 ] Bug #468057 - CVE-2008-4641 jhead: command exection caused by incorrect handling of the shell escapes https://bugzilla.redhat.com/show_bug.cgi?id=468057 su -c 'yum update jhead' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at Fedora-package-announce mailing list Fedora-package-announce@redhat.com http://www.redhat.com/mailman/listinfo/fedora-package-announce
Change Log
References