[ubuntu/focal-security] jhead 1:3.04-1ubuntu0.2 (Accepted)
George-Andrei Iosif
andrei.iosif at canonical.com
Thu May 25 06:20:40 UTC 2023
jhead (1:3.04-1ubuntu0.2) focal-security; urgency=medium
* SECURITY UPDATE: heap buffer overflow while rotating an image
- debian/patches/CVE-2021-34055.patch: If a read EXIF section in
jpgfile.c, then discard it.
- CVE-2021-34055
* SECURITY UPDATE: code execution when regenerating the Exif thumbnail
- debian/patches/CVE-2022-41751.patch: Adds a check in jhead.c for
dangerous characters in filenames.
- CVE-2022-41751
Date: 2023-05-24 13:22:14.527170+00:00
Changed-By: George-Andrei Iosif <andrei.iosif at canonical.com>
https://launchpad.net/ubuntu/+source/jhead/1:3.04-1ubuntu0.2
-------------- next part --------------
Sorry, changesfile not available.
More information about the Focal-changes
mailing list