Back to search
CVE-2012-2841
Published: Jul 13, 2012
Modified: Aug 6, 2024
PUBLISHED
Description
Integer underflow in the exif_entry_get_value function in exif-entry.c in the EXIF Tag Parsing Library (aka libexif) 0.6.20 might allow remote attackers to execute arbitrary code via vectors involving a crafted buffer-size parameter during the formatting of an EXIF tag, leading to a heap-based buffer overflow.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
54437
vdb-entry
x_refsource_BID
DSA-2559
vendor-advisory
x_refsource_DEBIAN
SUSE-SU-2012:0903
vendor-advisory
x_refsource_SUSE
[libexif-devel] 20120712 libexif project security advisory July 12, 2012
mailing-list
x_refsource_MLIST
49988
third-party-advisory
x_refsource_SECUNIA
RHSA-2012:1255
vendor-advisory
x_refsource_REDHAT
USN-1513-1
vendor-advisory
x_refsource_UBUNTU
SUSE-SU-2012:0902
vendor-advisory
x_refsource_SUSE
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now