Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:ebuild/media-libs/libexif@0.6.21
purl pkg:ebuild/media-libs/libexif@0.6.21
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (8)
Vulnerability Summary Aliases
VCID-1qye-wx7e-puda Off-by-one error in the exif_convert_utf16_to_utf8 function in exif-entry.c in the EXIF Tag Parsing Library (aka libexif) before 0.6.21 allows remote attackers to cause a denial of service or possibly execute arbitrary code via crafted EXIF tags in an image. CVE-2012-2840
VCID-22jn-mcwn-j3ax The exif_entry_get_value function in exif-entry.c in the EXIF Tag Parsing Library (aka libexif) before 0.6.21 allows remote attackers to cause a denial of service (out-of-bounds read) or possibly obtain sensitive information from process memory via crafted EXIF tags in an image. CVE-2012-2812
VCID-44bu-3z7v-5ydx The mnote_olympus_entry_get_value function in olympus/mnote-olympus-entry.c in the EXIF Tag Parsing Library (aka libexif) before 0.6.21 allows remote attackers to cause a denial of service (divide-by-zero error) via an image with crafted EXIF tags that are not properly handled during the formatting of EXIF maker note tags. CVE-2012-2837
VCID-46sb-z45u-aqhp Integer overflow in the jpeg_data_load_data function in jpeg-data.c in libjpeg in exif 0.6.20 allows remote attackers to cause a denial of service (buffer over-read and application crash) or obtain potentially sensitive information via a crafted JPEG file. CVE-2012-2845
VCID-ceaj-6s1m-3yak The exif_data_load_data function in exif-data.c in the EXIF Tag Parsing Library (aka libexif) before 0.6.21 allows remote attackers to cause a denial of service (out-of-bounds read) or possibly obtain sensitive information from process memory via crafted EXIF tags in an image. CVE-2012-2836
VCID-fwj4-n4af-wued Buffer overflow in the exif_entry_format_value function in exif-entry.c in the EXIF Tag Parsing Library (aka libexif) 0.6.20 allows remote attackers to cause a denial of service or possibly execute arbitrary code via crafted EXIF tags in an image. CVE-2012-2814
VCID-g856-qmgw-fbca Integer underflow in the exif_entry_get_value function in exif-entry.c in the EXIF Tag Parsing Library (aka libexif) 0.6.20 might allow remote attackers to execute arbitrary code via vectors involving a crafted buffer-size parameter during the formatting of an EXIF tag, leading to a heap-based buffer overflow. CVE-2012-2841
VCID-v2pe-r74z-fucm The exif_convert_utf16_to_utf8 function in exif-entry.c in the EXIF Tag Parsing Library (aka libexif) before 0.6.21 allows remote attackers to cause a denial of service (out-of-bounds read) or possibly obtain sensitive information from process memory via crafted EXIF tags in an image. CVE-2012-2813

Date Actor Action Vulnerability Source VulnerableCode Version
2026-06-04T19:14:04.945128+00:00 Gentoo Importer Fixing VCID-46sb-z45u-aqhp https://security.gentoo.org/glsa/201401-10 38.6.0
2026-06-04T19:14:04.909753+00:00 Gentoo Importer Fixing VCID-g856-qmgw-fbca https://security.gentoo.org/glsa/201401-10 38.6.0
2026-06-04T19:14:04.876542+00:00 Gentoo Importer Fixing VCID-1qye-wx7e-puda https://security.gentoo.org/glsa/201401-10 38.6.0
2026-06-04T19:14:04.842865+00:00 Gentoo Importer Fixing VCID-44bu-3z7v-5ydx https://security.gentoo.org/glsa/201401-10 38.6.0
2026-06-04T19:14:04.809194+00:00 Gentoo Importer Fixing VCID-ceaj-6s1m-3yak https://security.gentoo.org/glsa/201401-10 38.6.0
2026-06-04T19:14:04.775898+00:00 Gentoo Importer Fixing VCID-fwj4-n4af-wued https://security.gentoo.org/glsa/201401-10 38.6.0
2026-06-04T19:14:04.741321+00:00 Gentoo Importer Fixing VCID-v2pe-r74z-fucm https://security.gentoo.org/glsa/201401-10 38.6.0
2026-06-04T19:14:04.705560+00:00 Gentoo Importer Fixing VCID-22jn-mcwn-j3ax https://security.gentoo.org/glsa/201401-10 38.6.0