Information on source package jhead

Available versions

ReleaseVersion
jessie1:2.97-1+deb8u2
stretch1:3.00-4+deb9u1
buster1:3.00-8
buster (security)1:3.00-8+deb10u1
bullseye1:3.04-6+deb11u1
bookworm1:3.06.0.1-6
trixie1:3.08-2
sid1:3.08-2

Open issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2024-2824vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableA vulnerability was found in Matthias-Wandel jhead 3.08 and classified ...
CVE-2022-41751vulnerablevulnerablefixedfixedfixedfixedfixedJhead 3.06.0.1 allows attackers to execute arbitrary OS commands by pl ...
CVE-2022-28550vulnerablevulnerablevulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedMatthias-Wandel/jhead jhead 3.06 is vulnerable to Buffer Overflow via ...
CVE-2021-34055vulnerablevulnerablefixedfixedfixedfixedfixedjhead 3.06 is vulnerable to Buffer Overflow via exif.c in function Put ...
CVE-2021-28278vulnerablevulnerablevulnerablevulnerablefixedfixedfixedA Heap-based Buffer Overflow vulnerability exists in jhead 3.04 and 3. ...
CVE-2021-28277vulnerablevulnerablevulnerablevulnerablefixedfixedfixedA Heap-based Buffer Overflow vulnerabilty exists in jhead 3.04 and 3.0 ...
CVE-2021-28275vulnerablevulnerablevulnerablevulnerablefixedfixedfixedA Denial of Service vulnerability exists in jhead 3.04 and 3.05 due to ...

Open unimportant issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2021-28276vulnerablevulnerablevulnerablevulnerablefixedfixedfixedA Denial of Service vulnerability exists in jhead 3.04 and 3.05 via a ...
CVE-2021-3496vulnerablevulnerablevulnerablefixedfixedfixedfixedA heap-based buffer overflow was found in jhead in version 3.06 in Get ...
CVE-2020-28840vulnerablevulnerablevulnerablevulnerablefixedfixedfixedBuffer Overflow vulnerability in jpgfile.c in Matthias-Wandel jhead ve ...
CVE-2020-26208vulnerablevulnerablevulnerablefixedfixedfixedfixedJHEAD is a simple command line tool for displaying and some manipulati ...
CVE-2020-6625vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerablejhead through 3.04 has a heap-based buffer over-read in Get32s when ca ...
CVE-2020-6624vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerablejhead through 3.04 has a heap-based buffer over-read in process_DQT in ...
CVE-2019-1010302fixedvulnerablevulnerablefixedfixedfixedfixedjhead 3.03 is affected by: Incorrect Access Control. The impact is: De ...
CVE-2019-1010301fixedvulnerablevulnerablefixedfixedfixedfixedjhead 3.03 is affected by: Buffer Overflow. The impact is: Denial of s ...
CVE-2019-19035vulnerablevulnerablevulnerablefixedfixedfixedfixedjhead 3.03 is affected by: heap-based buffer over-read. The impact is: ...
CVE-2018-6612vulnerablevulnerablefixedfixedfixedfixedfixedAn integer underflow bug in the process_EXIF function of the exif.c fi ...

Resolved issues

BugDescription
CVE-2018-17088The ProcessGpsInfo function of the gpsinfo.c file of jhead 3.00 may al ...
CVE-2018-16554The ProcessGpsInfo function of the gpsinfo.c file of jhead 3.00 may al ...
CVE-2016-3822exif.c in Matthias Wandel jhead 2.87, as used in libjhead in Android 4 ...
CVE-2008-4641The DoCommand function in jhead.c in Matthias Wandel jhead 2.84 and ea ...
CVE-2008-4640The DoCommand function in jhead.c in Matthias Wandel jhead 2.84 and ea ...
CVE-2008-4639jhead.c in Matthias Wandel jhead 2.84 and earlier allows local users t ...
CVE-2008-4575Buffer overflow in the DoCommand function in jhead before 2.84 might a ...

Security announcements

DSA / DLADescription
DSA-5294-1jhead - security update
DLA-3219-1jhead - security update
DLA-2054-1jhead - security update
DSA-3825-1jhead - security update
DLA-864-1jhead - security update
Search for package or bug name: Reporting problems