CVE-2007-6351 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-6351
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-6351

Description: libexif 0.6.16 and earlier allows context-dependent attackers to cause a denial of service (infinite recursion) via an image file with crafted EXIF tags, possibly involving the exif_loader_write function in exif_loader.c.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/39166 UBUNTU http://www.ubuntu.com/usn/usn-654-1 SUSE http://www.novell.com/linux/security/advisories/suse_security_summary_report.html ST 1019124 SAID Secunia Advisory: SA32274 Secunia Advisory: SA28776 Secunia Advisory: SA28636 Secunia Advisory: SA28346 Secunia Advisory: SA28266 Secunia Advisory: SA28195 Secunia Advisory: SA28127 Secunia Advisory: SA28076 Secunia Advisory: SA28400 REDHAT http://www.redhat.com/support/errata/RHSA-2007-1165.html OSVDB 42652 MISC MANDRIVA http://www.mandriva.com/security/advisories?name=MDVSA-2008:005 GENTOO http://security.gentoo.org/glsa/glsa-200712-15.xml FEDORA DEBIAN http://www.debian.org/security/2008/dsa-1487 CONFIRM http://bugs.gentoo.org/show_bug.cgi?id=202350 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/485822/100/0/threaded BID 26976

Return to the previous page.