[Pkg-phototools-devel] Bug#873022: libexif: CVE-2016-6328: Integer overflow in parsing MNOTE entry data of the input file
Salvatore Bonaccorso
carnil at debian.org
Wed Aug 23 19:07:23 UTC 2017
Source: libexif
Version: 0.6.21-2
Severity: important
Tags: security patch upstream
Hi,
the following vulnerability was published for libexif.
CVE-2016-6328[0]:
|Integer overflow in parsing MNOTE entry data of the input file
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2016-6328
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6328
[1] http://libexif.cvs.sourceforge.net/viewvc/libexif/libexif/libexif/pentax/mnote-pentax-entry.c?r1=1.26&r2=1.27
Regards,
Salvatore
More information about the Pkg-phototools-devel
mailing list