CVE-2007-6351

Published: 20 December 2007

libexif 0.6.16 and earlier allows context-dependent attackers to cause a denial of service (infinite recursion) via an image file with crafted EXIF tags, possibly involving the exif_loader_write function in exif_loader.c.

Priority

Low

Status

Package Release Status
libexif
Launchpad, Ubuntu, Debian
Upstream
Released (0.6.16-2.1)
Patches:
Vendor: http://patch-tracking.debian.net/patch/series/view/libexif/0.6.16-2.1/CVE-2007-6351