Ubuntu
libexif package

libexif10: Vulnerable to buffer overflows

Bug #13621 reported by Debian Bug Importer
This bug report is a duplicate of:  Bug #13499: Improper boundary checking -> SIGSEGV. Edit Remove
4
Affects Status Importance Assigned to Milestone
libexif (Debian)
Fix Released
Unknown
libexif (Ubuntu)
Invalid
High
Martin Pitt

Bug Description

Automatically imported from Debian bug report #298464 http://bugs.debian.org/298464

Revision history for this message
Debian Bug Importer (debzilla) wrote :

Message-ID: <email address hidden>
Date: Mon, 7 Mar 2005 18:26:32 +0100
From: Martin Pitt <email address hidden>
To: Debian Bug Tracking System <email address hidden>
Subject: libexif10: Vulnerable to buffer overflows

--k+w/mQv8wyuph6w0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

Package: libexif10
Severity: grave
Tags: security patch
Justification: user security hole

Hi!

libexif is vulnerable against some buffer overflows. Please see

  https://bugzilla.ubuntulinux.org/show_bug.cgi?id=3D7152

for details. You can get the Ubuntu patch at

  http://patches.ubuntu.com/patches/libexif.security.diff

Thanks,

Martin

-- System Information:
Debian Release: 3.1
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: i386 (i686)
Kernel: Linux 2.6.11
Locale: LANG=3Dde_DE.UTF-8, LC_CTYPE=3Dde_DE.UTF-8 (charmap=3DUTF-8)

Versions of packages libexif10 depends on:
ii libc6 2.3.2.ds1-20 GNU C Library: Shared librarie=
s an

--=20
Martin Pitt http://www.piware.de
Ubuntu Developer http://www.ubuntulinux.org
Debian GNU/Linux Developer http://www.debian.org

--k+w/mQv8wyuph6w0
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: Digital signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)

iD8DBQFCLI7IDecnbV4Fd/IRAvl2AKDX3CCVgLs2tlo6Jfe7pEDzVM0ojgCg778i
L7IgeMWVEfyMuZ3hCOholAw=
=1UbC
-----END PGP SIGNATURE-----

--k+w/mQv8wyuph6w0--

Revision history for this message
Debian Bug Importer (debzilla) wrote :

Message-Id: <email address hidden>
Date: Mon, 07 Mar 2005 13:17:17 -0500
From: Frederic Peters <email address hidden>
To: <email address hidden>
Subject: Bug#298464: fixed in libexif 0.6.9-5

Source: libexif
Source-Version: 0.6.9-5

We believe that the bug you reported is fixed in the latest version of
libexif, which is due to be installed in the Debian FTP archive:

libexif-dev_0.6.9-5_i386.deb
  to pool/main/libe/libexif/libexif-dev_0.6.9-5_i386.deb
libexif10_0.6.9-5_i386.deb
  to pool/main/libe/libexif/libexif10_0.6.9-5_i386.deb
libexif_0.6.9-5.diff.gz
  to pool/main/libe/libexif/libexif_0.6.9-5.diff.gz
libexif_0.6.9-5.dsc
  to pool/main/libe/libexif/libexif_0.6.9-5.dsc

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to <email address hidden>,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Frederic Peters <email address hidden> (supplier of updated libexif package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing <email address hidden>)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Mon, 7 Mar 2005 18:56:31 +0100
Source: libexif
Binary: libexif10 libexif-dev
Architecture: source i386
Version: 0.6.9-5
Distribution: unstable
Urgency: high
Maintainer: Frederic Peters <email address hidden>
Changed-By: Frederic Peters <email address hidden>
Description:
 libexif-dev - library to parse EXIF files (development files)
 libexif10 - library to parse EXIF files
Closes: 298464
Changes:
 libexif (0.6.9-5) unstable; urgency=high
 .
   * Urgency high since it fixes a security issue.
   * Patch provided from Ubuntu by Martin Pitt, written by Sylvain Defresne.
   * libexif/exif-data.c: Add buffer size checks in several places before
     trying to access it. (closes: #298464)
   * Reference: https://bugzilla.ubuntulinux.org/show_bug.cgi?id=7152
   * debian/control: reworded description synopsis.
Files:
 ea2a9569859ce74f1c07f58cc7bf9dac 579 libs optional libexif_0.6.9-5.dsc
 5c75af2ea0bac0cebc858b8ee596d5c7 4322 libs optional libexif_0.6.9-5.diff.gz
 593b699131a8b5469b0bd8ea73c4a7ff 66588 libdevel optional libexif-dev_0.6.9-5_i386.deb
 be542f3a7366f8c31379447f40a51754 80952 libs optional libexif10_0.6.9-5_i386.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.0 (GNU/Linux)

iD8DBQFCLJaPoR3LsWeD7V4RAryRAJ9Kz1jbhiKz2tc6SvGg8elF1KuM1wCdFyJj
LGwOhNa32GLGWoHtVZUDrLw=
=TTCt
-----END PGP SIGNATURE-----

Revision history for this message
Martin Pitt (pitti) wrote :

This bug has been marked as a duplicate of bug 13499.

Bug Watch Updater (bug-watch-updater)
Changed in libexif:
status: Unknown → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.