CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2021-28276 – Ubuntu Security Notice USN-6098-1
https://notcve.org/view.php?id=CVE-2021-28276
23 Mar 2022 — A Denial of Service vulnerability exists in jhead 3.04 and 3.05 via a wild address read in the ProcessCanonMakerNoteDir function in makernote.c. Se presenta una vulnerabilidad de denegación de servicio en jhead versiones 3.04 y 3.05, por medio de una lectura de una dirección salvaje en la función ProcessCanonMakerNoteDir en el archivo makernote.c It was discovered that Jhead did not properly handle certain crafted images while processing the JFIF markers. An attacker could cause Jhead to crash. This issue o... • https://github.com/Matthias-Wandel/jhead/issues/1 •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 1CVE-2021-28277 – Gentoo Linux Security Advisory 202210-17
https://notcve.org/view.php?id=CVE-2021-28277
23 Mar 2022 — A Heap-based Buffer Overflow vulnerabilty exists in jhead 3.04 and 3.05 is affected by: Buffer Overflow via the RemoveUnknownSections function in jpgfile.c. Se presenta una vulnerabilidad de Desbordamiento del Búfer en la región Heap de la memoria en jhead versiones 3.04 y 3.05, está afectada por: Desbordamiento del búfer por medio de la función RemoveUnknownSections en el archivo jpgfile.c Multiple vulnerabilities have been found in JHead, the worst of which could result in denial of service. Versions less... • https://github.com/Matthias-Wandel/jhead/issues/16 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 1CVE-2021-28278 – Ubuntu Security Notice USN-6098-1
https://notcve.org/view.php?id=CVE-2021-28278
23 Mar 2022 — A Heap-based Buffer Overflow vulnerability exists in jhead 3.04 and 3.05 via the RemoveSectionType function in jpgfile.c. Se presenta una vulnerabilidad de Desbordamiento del Búfer en la región Heap de la memoria en jhead versiones 3.04 y 3.05, por medio de la función RemoveSectionType en el archivo jpgfile.c It was discovered that Jhead did not properly handle certain crafted images while processing the JFIF markers. An attacker could cause Jhead to crash. This issue only affected Ubuntu 14.04 LTS, Ubuntu ... • https://github.com/Matthias-Wandel/jhead/issues/15 • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 1CVE-2021-28275 – Ubuntu Security Notice USN-6110-1
https://notcve.org/view.php?id=CVE-2021-28275
23 Mar 2022 — A Denial of Service vulnerability exists in jhead 3.04 and 3.05 due to a wild address read in the Get16u function in exif.c in will cause segmentation fault via a crafted_file. Se presenta una vulnerabilidad de Denegación de Servicio en jhead versiones 3.04 y 3.05, debido a una lectura de dirección salvaje en la función Get16u en el archivoexif.c en causará un fallo de segmentación por medio de un crafted_file It was discovered that Jhead did not properly handle certain crafted Canon images when processing ... • https://github.com/Matthias-Wandel/jhead/issues/17 • CWE-704: Incorrect Type Conversion or Cast •