libexif
Page content
- Author: voroskoi
- Vulnerable: 0.6.13-2terminus1
- Unaffected: 0.6.13-2terminus2
A vulnerability has been reported in libexif, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise an application using the library. The vulnerability is caused due to an integer overflow error within the “exif_data_load_data_entry()” function when handling EXIF component information and can be exploited to cause a heap based buffer overflow. Successful exploitation may allow an attacker to crash an application using the library or to execute arbitrary code.
- Bug Tracker URL: http://bugs.frugalware.org/task/2197