Overview Repositories Revisions Requests Users Attributes Meta
Security update for jhead

This update for jhead fixes the following issues:

jhead was updated to 3.06.0.1

* lot of fuzztest fixes
* Apply a whole bunch of patches from Debian.
* Spell check and fuzz test stuff from Debian, nothing useful to
human users.
* Add option to set exif date from date from another file.
* Bug fixes relating to fuzz testing.
* Fix bug where thumbnail replacement DID NOT WORK.
* Fix bug when no orientation tag is present
* Fix bug of not clearing exif information when processing images
with an without exif data in one invocation.
* Remove some unnecessary warnings with some types of GPS data
* Remove multiple copies of the same type of section when deleting
section types

Fixed bugs
CVE-2016-3822
CVE-2019-1010302
CVE-2020-6624
CVE-2018-6612
CVE-2019-1010301
CVE-2021-3496
CVE-2020-6625
CVE-2018-16554
CVE-2018-17088
bnc#1144316
VUL-1: CVE-2019-1010301: jhead: Stack buffer overflow in gpsinfo.c when running jhead
bnc#1144354
VUL-1: CVE-2019-1010302: jhead: incorrect access control in iptc.c Line 122 show_IPTC() causing denial of service
bnc#1160547
VUL-1: CVE-2020-6624: jhead: heap-based buffer over-read in process_DQT in jpgqguess.c
bnc#1160544
VUL-1: CVE-2020-6625: jhead: heap-based buffer over-read in Get32s when called from ProcessGpsInfo in gpsinfo.c
Selected Binaries
openSUSE Build Service is sponsored by
Places