VYPR

rpm package

opensuse/libexif&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/libexif&distro=openSUSE%20Tumbleweed

Vulnerabilities (22)

  • CVE-2012-2812Jul 13, 2012
    affected < 0.6.21-10.8fixed 0.6.21-10.8

    The exif_entry_get_value function in exif-entry.c in the EXIF Tag Parsing Library (aka libexif) before 0.6.21 allows remote attackers to cause a denial of service (out-of-bounds read) or possibly obtain sensitive information from process memory via crafted EXIF tags in an image.

  • CVE-2007-6351Dec 20, 2007
    affected < 0.6.23-1.2fixed 0.6.23-1.2

    libexif 0.6.16 and earlier allows context-dependent attackers to cause a denial of service (infinite recursion) via an image file with crafted EXIF tags, possibly involving the exif_loader_write function in exif_loader.c.

Page 2 of 2