Search CVE reports
11 – 20 of 24 results
CVE-2021-3496
Medium prioritySome fixes available 4 of 7
A heap-based buffer overflow was found in jhead in version 3.06 in Get16u() in exif.c when processing a crafted file.
1 affected package
jhead
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| jhead | — | Not affected | Fixed | Fixed | Fixed |
CVE-2020-6625
Medium prioritySome fixes available 4 of 9
jhead through 3.04 has a heap-based buffer over-read in Get32s when called from ProcessGpsInfo in gpsinfo.c.
1 affected package
jhead
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| jhead | — | Not affected | Fixed | Fixed | Fixed |
CVE-2020-6624
Medium prioritySome fixes available 4 of 9
jhead through 3.04 has a heap-based buffer over-read in process_DQT in jpgqguess.c.
1 affected package
jhead
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| jhead | — | Not affected | Fixed | Fixed | Fixed |
CVE-2019-19035
Medium prioritySome fixes available 3 of 5
jhead 3.03 is affected by: heap-based buffer over-read. The impact is: Denial of service. The component is: ReadJpegSections and process_SOFn in jpgfile.c. The attack vector is: Open a specially crafted JPEG file.
1 affected package
jhead
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| jhead | — | Not affected | Not affected | Fixed | Fixed |
CVE-2019-1010302
Low prioritySome fixes available 2 of 4
jhead 3.03 is affected by: Incorrect Access Control. The impact is: Denial of service. The component is: iptc.c Line 122 show_IPTC(). The attack vector is: the victim must open a specially crafted JPEG file.
1 affected package
jhead
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| jhead | — | Not affected | Not affected | Fixed | Fixed |
CVE-2019-1010301
Low prioritySome fixes available 2 of 4
jhead 3.03 is affected by: Buffer Overflow. The impact is: Denial of service. The component is: gpsinfo.c Line 151 ProcessGpsInfo(). The attack vector is: Open a specially crafted JPEG file.
1 affected package
jhead
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| jhead | — | Not affected | Not affected | Fixed | Fixed |
CVE-2018-17088
Medium priorityThe ProcessGpsInfo function of the gpsinfo.c file of jhead 3.00 may allow a remote attacker to cause a denial-of-service attack or unspecified other impact via a malicious JPEG file, because there is an integer overflow during a...
1 affected package
jhead
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| jhead | — | — | — | Fixed | Fixed |
CVE-2018-16554
Low priorityThe ProcessGpsInfo function of the gpsinfo.c file of jhead 3.00 may allow a remote attacker to cause a denial-of-service attack or unspecified other impact via a malicious JPEG file, because of inconsistency between float and...
1 affected package
jhead
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| jhead | — | — | — | Fixed | Fixed |
CVE-2018-6612
Medium prioritySome fixes available 2 of 3
An integer underflow bug in the process_EXIF function of the exif.c file of jhead 3.00 raises a heap-based buffer over-read when processing a malicious JPEG file, which may allow a remote attacker to cause a...
1 affected package
jhead
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| jhead | — | Not affected | Not affected | Not affected | Fixed |
CVE-2016-3822
Medium prioritySome fixes available 2 of 6
exif.c in Matthias Wandel jhead 2.87, as used in libjhead in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-08-01, allows remote attackers to execute arbitrary code or cause a denial of...
1 affected package
jhead
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| jhead | — | — | — | Not affected | Fixed |