CVE-2007-6353

Published: 19 December 2007

Integer overflow in exif.cpp in exiv2 library allows context-dependent attackers to execute arbitrary code via a crafted EXIF file that triggers a heap-based buffer overflow.

Priority

Medium

Status

Package Release Status
exiv2
Launchpad, Ubuntu, Debian
Upstream
Released (0.16)
Patches:
vendor: SUSE-SR:2008:001