libexif project security advisory
November 12, 2009
A flaw in libexif was discovered that causes a heap buffer to overflow
when certain invalid EXIF images are processed. The flaw occurs in the
tag fixup routine which attempts to convert in place an array of 8-bit
integers into 16-bit integers. This fixup is performed by default after
reading an image and until version 0.6.18 there was no easy way to disable
it, so it is likely that nearly all applications using libexif to read
images are vulnerable.
Only libexif version 0.6.18 is affected by this flaw. Version 0.6.17 and
previous and 0.6.19 and later are not affected.
Upgrade to version 0.6.19.
Here are the MD5 sums of the released files:
Here are the SHA1 sums of the released files:
Get latest updates about Open Source Projects, Conferences and News.