CVE-2021-34055: jhead 3.06 is vulnerable to Buffer Overflow via exif.c in function Put16u. Patch is: https://github.com/Matthias-Wandel/jhead/commit/f0a884210cc46830b176f71fd61569adc8f230a7 Not sure if in any release
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=ecf038d30f5cae49c82bed3af187d62387ed8c1e commit ecf038d30f5cae49c82bed3af187d62387ed8c1e Author: Andreas K. Hüttel <dilfridge@gentoo.org> AuthorDate: 2023-04-10 02:48:08 +0000 Commit: Andreas K. Hüttel <dilfridge@gentoo.org> CommitDate: 2023-04-10 02:48:38 +0000 media-gfx/jhead: Add CVE-2021-34055 patch Bug: https://bugs.gentoo.org/879801 Signed-off-by: Andreas K. Hüttel <dilfridge@gentoo.org> .../files/jhead-3.06.0.1-CVE-2021-34055.patch | 108 +++++++++++++++++++++ media-gfx/jhead/jhead-3.06.0.1-r1.ebuild | 27 ++++++ 2 files changed, 135 insertions(+)
Cleanup done