Bug 150506

Summary: CAN-2005-0664 buffer overflow in libexif
Product: [Fedora] Fedora Reporter: Josh Bressers <bressers>
Component: libexifAssignee: Matthias Clasen <mclasen>
Status: CLOSED ERRATA QA Contact:
Severity: low Docs Contact:
Priority: medium    
Version: 3Keywords: Security
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard: impact=low,public=20040303,source=vendorsec,reported=20050304
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2005-03-20 22:28:41 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Josh Bressers 2005-03-07 20:49:13 UTC 
+++ This bug was initially created as a clone of Bug #150503 +++

Ubuntu alerted vendor-sec to a buffer overflow reported to their BTS regarding
processing exif headers with libexif.

See:
https://bugzilla.ubuntulinux.org/show_bug.cgi?id=7152
http://sourceforge.net/tracker/index.php?func=detail&aid=1158402&group_id=12272&atid=312272

The sourceforge bug suggests this is only a DoS.
Comment 1 Josh Bressers 2005-03-07 20:51:37 UTC 
This issue should also affect FC2
Comment 2 Matthias Clasen 2005-03-14 14:48:35 UTC 
Marco built and pushed libexif-0.5.12-3.1 with the fix.
Comment 3 Mark J. Cox 2005-03-20 22:28:41 UTC 
      CAN-2005-0664 Probably Affects: FC2 [#150506:MODIFIED] -> 2005-199 20050308
      CAN-2005-0664 Probably Affects: FC3 [#150506:MODIFIED] -> 2005-200 20050308