CVE-2012-2814

Publication date 13 July 2012

Last updated 24 July 2024


Ubuntu priority

Buffer overflow in the exif_entry_format_value function in exif-entry.c in the EXIF Tag Parsing Library (aka libexif) 0.6.20 allows remote attackers to cause a denial of service or possibly execute arbitrary code via crafted EXIF tags in an image.

Status

Package Ubuntu Release Status
libexif 12.04 LTS precise
Fixed 0.6.20-2ubuntu0.1
11.10 oneiric
Fixed 0.6.20-1ubuntu0.1
11.04 natty
Fixed 0.6.20-0ubuntu1.1
10.04 LTS lucid
Fixed 0.6.19-1ubuntu0.1
8.04 LTS hardy
Fixed 0.6.16-2.1ubuntu0.2

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package Patch details
libexif

References

Related Ubuntu Security Notices (USN)

Other references