CVE-2007-6351 - CVE Reference - Advisories

CVE Reference: CVE-2007-6351

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-6351

Description: libexif 0.6.16 and earlier allows context-dependent attackers to cause a denial of service (infinite recursion) via an image file with crafted EXIF tags, possibly involving the exif_loader_write function in exif_loader.c.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/39166 SUSE http://www.novell.com/linux/security/advisories/suse_security_summary_report.html ST 1019124 SAID Secunia Advisory: SA28127 Secunia Advisory: SA28076 Secunia Advisory: SA28195 Secunia Advisory: SA28266 Secunia Advisory: SA28346 Secunia Advisory: SA28400 Secunia Advisory: SA28636 Secunia Advisory: SA28776 REDHAT http://www.redhat.com/support/errata/RHSA-2007-1165.html MISC MANDRIVA http://www.mandriva.com/security/advisories?name=MDVSA-2008:005 GENTOO http://security.gentoo.org/glsa/glsa-200712-15.xml FEDORA DEBIAN http://www.debian.org/security/2008/dsa-1487 CONFIRM http://bugs.gentoo.org/show_bug.cgi?id=202350 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/485822/100/0/threaded BID 26976

Return to the previous page.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	OpenBSD BIND Query Port DNS Cache Poisoning

2.	Drupal Session Fixation Vulnerability

3.	Red Hat update for kernel

4.	Linux Kernel LDT Buffer Size Handling Vulnerability

5.	IPCop update for perl

6.	Debian update for clamav

7.	Ubuntu update for php

8.	Red Hat update for thunderbird

9.	dnsmasq Denial of Service and DNS Cache Poisoning

10.	Apple Safari Cross-Domain Cookie Injection Vulnerability