CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 1CVE-2022-28550 – Gentoo Linux Security Advisory 202406-05
https://notcve.org/view.php?id=CVE-2022-28550
13 Jun 2023 — Matthias-Wandel/jhead jhead 3.06 is vulnerable to Buffer Overflow via shellescape(), jhead.c, jhead. jhead copies strings to a stack buffer when it detects a &i or &o. However, jhead does not check the boundary of the stack buffer. As a result, there will be a stack buffer overflow problem when multiple `&i` or `&o` are given. Multiple vulnerabilities have been discovered in JHead, the worst of which may lead to arbitrary code execution. Versions greater than or equal to 3.08 are affected. • https://github.com/Matthias-Wandel/jhead/commit/64894dbc7d8e1e232e85f1cab25c64290b2fc167 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 1CVE-2021-34055 – Debian Security Advisory 5294-1
https://notcve.org/view.php?id=CVE-2021-34055
04 Nov 2022 — jhead 3.06 is vulnerable to Buffer Overflow via exif.c in function Put16u. jhead 3.06 es vulnerable al desbordamiento del búfer a través de exif.c en la función Put16u. It was discovered that Jhead did not properly handle certain crafted images while rotating them. An attacker could possibly use this issue to crash Jhead, resulting in a denial of service. Kyle Brown discovered that Jhead did not properly handle certain crafted images while regenerating the Exif thumbnail. An attacker could possibly use this... • https://github.com/Matthias-Wandel/jhead/issues/36 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2021-3496 – Ubuntu Security Notice USN-6110-1
https://notcve.org/view.php?id=CVE-2021-3496
22 Apr 2021 — A heap-based buffer overflow was found in jhead in version 3.06 in Get16u() in exif.c when processing a crafted file. Se encontró un desbordamiento de búfer en la región heap de la memoria en jhead en versión 3.06, en la función Get16u() en el archivo exif.c cuando se procesa un archivo diseñado An update that fixes 9 vulnerabilities is now available. This update for jhead fixes the following issues. Jhead was updated to 3.06.0.1 lot of fuzztest fixes Apply a whole bunch of patches from Debian. Spell check ... • https://bugzilla.redhat.com/show_bug.cgi?id=1949245 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •