Security update for libexif
This update for libexif fixes several issues.
These security issues were fixed:
- CVE-2016-6328: Fixed integer overflow in parsing MNOTE entry data of the input
file (bsc#1055857)
- CVE-2017-7544: Fixed out-of-bounds heap read vulnerability in
exif_data_save_data_entry function in libexif/exif-data.c caused by improper
length computation of the allocated data of an ExifMnote entry which can cause
denial-of-service or possibly information disclosure (bsc#1059893)
This update was imported from the SUSE:SLE-12:Update update project.
-
Submitted by
Karol Babioch (kbabioch)
Fixed bugs
bnc#1059893
VUL-1:CVE-2017-7544: libexif: Out-of-bounds heap read in exif_data_save_data_entry function
bnc#1055857
VUL-0: CVE-2016-6328: libexif: Integer overflow in parsing MNOTE entry data of the input file
