Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Gentoo: 200706-09 Normal: libexif Buffer Overflow Execution Risk

gentoo
Calendar Grey June 26, 2007
Dist Gentoo Esm H88
Improve Gentoo security by updating the libexif package to mitigate a buffer overflow vulnerability that may allow arbitrary code execution through crafted images
libexif does not properly handle image EXIF information, possibly allowing for the execution of arbitrary code.

Summary

Gentoo Linux Security Advisory GLSA 200706-09 https://security.gentoo.org/ Severity: Normal Title: libexif: Buffer overflow Date: June 26, 2007 Bugs: #181922 ID: 200706-09

Synopsis ======= libexif does not properly handle image EXIF information, possibly allowing for the execution of arbitrary code.
Background ========= libexif is a library for parsing, editing and saving EXIF metadata from images.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 media-libs/libexif < 0.6.16 >= 0.6.16
========== iDefense Labs have discovered that the exif_data_load_data_entry() function in libexif/exif-data.c improperly handles integer data while working with an image with ma...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory gentoo buffer overflow arbitrary code execution libexif normal severity

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory gentoo buffer overflow arbitrary code execution libexif normal severity

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here