Source |
CVE Liste |
Identifiant |
4070734 |
Date de publication |
2022-02-02 12:15:07 (vue: 2022-02-02 14:06:13) |
Titre |
CVE-2020-26208 |
Texte |
JHEAD is a simple command line tool for displaying and some manipulation of EXIF header data embedded in Jpeg images from digital cameras. In affected versions there is a heap-buffer-overflow on jhead-3.04/jpgfile.c:285 ReadJpegSections. Crafted jpeg images can be provided to the user resulting in a program crash or potentially incorrect exif information retrieval. Users are advised to upgrade. There is no known workaround for this issue. |
Envoyé |
Oui |
Condensat |
04/jpgfile 2020 26208 advised affected are buffer c:285 cameras can command crafted crash cve data digital displaying embedded exif from header heap images incorrect information issue jhead jpeg known line manipulation overflow potentially program provided readjpegsections resulting retrieval simple some tool upgrade user users versions workaround |
Tags |
Tool
|
Stories |
|
Notes |
|
Move |
|