Alerts This Week
Warning Icon 1 1,149
Alerts This Week
Warning Icon 1 1,149

Fedora 42 libexif 0.6.26 Important Denial of Service CVE-2026-40386

fedora
Calendar Grey April 30, 2026
Dist Fedora Esm H88
Update libexif 0.6.26 for Fedora 42 addresses critical issues like denial of service and information exposure risks.
Update to 0.6.26, fixing several CVEs https://github.com/libexif/libexif/releases/tag/v0.6.26

Summary

Most digital cameras produce EXIF files, which are JPEG files with

extra tags that contain information about the image. The EXIF library

allows you to parse an EXIF file and read the data from those tags.

Update Information:

Update to 0.6.26, fixing several CVEs https://github.com/libexif/libexif/releases/tag/v0.6.26

Change Log

* Tue Apr 14 2026 Packit - 0.6.26-1 - Update to 0.6.26 upstream release - Resolves: rhbz#2458177 * Fri Jan 16 2026 Fedora Release Engineering - 0.6.25-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_44_Mass_Rebuild * Thu Jul 24 2025 Fedora Release Engineering - 0.6.25-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild

References


[ 1 ] Bug #2457746 - CVE-2026-40386 libexif: libexif: Denial of Service and information disclosure via integer underflow in MakerNote decoding [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2457746 [ 2 ] Bug #2457747 - CVE-2026-40385 libexif: libexif: Information disclosure and crashes via integer overflow in Nikon MakerNote handling [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2457747 [ 3 ] Bug #2458177 - libexif-0.6.26 is available https://bugzilla.redhat.com/show_bug.cgi?id=2458177

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-b01307dc4d' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
important
Lowest
Low
Medium
High
Critical

Name: libexif
Product: Fedora 42
Version: 0.6.26
Release: 1.fc42
Summary: Library for extracting extra information from image files

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here