Mageia 7 And 8: MGASA-2021-0252 Critical Exif DoS Advisory
mageia
June 13, 2021
NULL Pointer Deference in the exif command line tool, when printing out XML formatted EXIF data, in exif v0.6.22 and earlier allows attackers to cause a Denial of Service (DoS) by ...
Summary
NULL Pointer Deference in the exif command line tool, when printing out
XML formatted EXIF data, in exif v0.6.22 and earlier allows attackers to
cause a Denial of Service (DoS) by uploading a malicious JPEG file, causing
the application to crash. (CVE-2021-27815).
References
- https://bugs.mageia.org/show_bug.cgi?id=29038
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/QMC6OTXZRPCUD3LOSWO4ISR7CH7NJQDT/
- https://www.cve.org/CVERecord?id=CVE-2021-27815
Topics Covered
Resolution
SRPMS
- 7/core/exif-0.6.22-1.1.mga7
- 8/core/exif-0.6.22-1.1.mga8
PREVIOUS 
NEXT Severity
critical
Lowest
Low
Medium
High
Critical
Publication date: 13 Jun 2021
URL: https://advisories.mageia.org/MGASA-2021-0252.html
Type: security
CVE: CVE-2021-27815
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!