CVE-2017-7544 (https://nvd.nist.gov/vuln/detail/CVE-2017-7544): libexif through 0.6.21 is vulnerable to out-of-bounds heap read vulnerability in exif_data_save_data_entry function in libexif/exif-data.c caused by improper length computation of the allocated data of an ExifMnote entry which can cause denial-of-service or possibly information disclosure. References: https://sourceforge.net/p/libexif/bugs/130/ https://sourceforge.net/p/libexif/bugs/_discuss/thread/fc394c4b/489a/attachment/xx.pat
@maintainer(s), both vulnerable and possible fixed versions are in tree. please call for stabilization if needed. Gentoo Security Padawan Daj Uan (jmbailey/mbailey_j)
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=96e70c303fbdd5949b7235132de1d4bf4a88a950 commit 96e70c303fbdd5949b7235132de1d4bf4a88a950 Author: Andreas Sturmlechner <asturm@gentoo.org> AuthorDate: 2018-09-18 09:20:08 +0000 Commit: Andreas Sturmlechner <asturm@gentoo.org> CommitDate: 2018-09-18 09:22:45 +0000 media-libs/libexif: Fix CVE-2017-7544 Bug: https://bugs.gentoo.org/631850 Package-Manager: Portage-2.3.49, Repoman-2.3.10 .../files/libexif-0.6.21-CVE-2017-7544.patch | 30 ++++++++++++++++++++++ media-libs/libexif/libexif-0.6.21-r2.ebuild | 5 +++- 2 files changed, 34 insertions(+), 1 deletion(-)
oh well...
ppc/ppc64 stable
amd64 stable
sparc done.
x86 stable
ia64 stable
arm stable
Stable on alpha.
No revdeps for sh and s390.
hppa lost stable
GLSA vote: no