CVE-2007-6352
NONEInteger overflow in libexif 0.6.16 and earlier allows context-dependent attackers to execute arbitrary code via an image with crafted EXIF tags, possibly involving the exif_data_load_data_thumbnail fu
Published: 12/20/2007Updated: 4/9/2025
Description
Integer overflow in libexif 0.6.16 and earlier allows context-dependent attackers to execute arbitrary code via an image with crafted EXIF tags, possibly involving the exif_data_load_data_thumbnail function in exif-data.c.
AI AnalysisPowered by AI
Affected Products
libexiflibexif
References
- http://bugs.gentoo.org/show_bug.cgi?id=202350
- http://osvdb.org/42653
- http://secunia.com/advisories/28076Vendor Advisory
- http://secunia.com/advisories/28127Vendor Advisory
- http://secunia.com/advisories/28195Vendor Advisory
- http://secunia.com/advisories/28266Vendor Advisory
- http://secunia.com/advisories/28346Vendor Advisory
- http://secunia.com/advisories/28400Vendor Advisory
- http://secunia.com/advisories/28636Vendor Advisory
- http://secunia.com/advisories/28776Vendor Advisory
- http://secunia.com/advisories/29381Vendor Advisory
- http://secunia.com/advisories/32274Vendor Advisory
- http://security.gentoo.org/glsa/glsa-200712-15.xml
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-234701-1
- http://www.debian.org/security/2008/dsa-1487
- http://www.mandriva.com/security/advisories?name=MDVSA-2008:005
- http://www.novell.com/linux/security/advisories/suse_security_summary_report.html
- http://www.redhat.com/support/errata/RHSA-2007-1165.htmlVendor Advisory
- http://www.redhat.com/support/errata/RHSA-2007-1166.htmlVendor Advisory
- http://www.securityfocus.com/archive/1/485822/100/0/threaded