Red Hat Security Advisory 2020-4766-01 - The libexif packages provide a library for extracting extra information from image files. Issues addressed include integer overflow, out of bounds read, out of bounds write, and use-after-free vulnerabilities.
4a7efa64cb79a8ea774aedba3a638362
Red Hat Security Advisory 2020-4040-01 - The libexif packages provide a library for extracting extra information from image files. Issues addressed include out of bounds read and use-after-free vulnerabilities.
b874db988ee274eb637eef2306c303d2
Gentoo Linux Security Advisory 202007-5 - Multiple vulnerabilities have been found in libexif, the worst of which could result in the arbitrary execution of code. Versions less than 0.6.22 are affected.
e2a2723d8b0d852028ddbb0c59cf6630
Ubuntu Security Notice 4277-1 - Liu Bingchang discovered that libexif incorrectly handled certain files. An attacker could possibly use this issue to access sensitive information or cause a denial of service. This issue only affected Ubuntu 12.04 ESM, Ubuntu 14.04 ESM and Ubuntu 16.04 LTS. Lili Xu and Bingchang Liu discovered that libexif incorrectly handled certain files. An attacker could possibly use this issue to access sensitive information or cause a denial of service. This issue only affected Ubuntu 12.04 ESM, Ubuntu 14.04 ESM and Ubuntu 16.04 LTS. Various other issues were also addressed.
27b27fb74cbbfcb729dd341b07fc9202
Debian Linux Security Advisory 4618-1 - An out-of-bounds write vulnerability due to an integer overflow was reported in libexif, a library to parse EXIF files, which could result in denial of service, or potentially the execution of arbitrary code if specially crafted image files are processed.
533efba43844c56bf8753f1b052bb845