A Heap-based Buffer Overflow vulnerabilty exists in jhead 3.04 and 3.05 is affected by: Buffer Overflow via the RemoveUnknownSections function in jpgfile.c.
References
Link | Resource |
---|---|
https://github.com/Matthias-Wandel/jhead/issues/16 | Exploit Issue Tracking Third Party Advisory |
https://security.gentoo.org/glsa/202210-17 | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
History
31 Oct 2022, 04:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
28 Mar 2022, 21:42
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://github.com/Matthias-Wandel/jhead/issues/16 - Exploit, Issue Tracking, Third Party Advisory | |
CWE | CWE-787 | |
CVSS |
v2 : v3 : |
v2 : 6.8
v3 : 7.8 |
CPE | cpe:2.3:a:jhead_project:jhead:3.05:*:*:*:*:*:*:* cpe:2.3:a:jhead_project:jhead:3.04:*:*:*:*:*:*:* |
23 Mar 2022, 21:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-03-23 21:15
Updated : 2024-02-04 22:29
NVD link : CVE-2021-28277
Mitre link : CVE-2021-28277
CVE.ORG link : CVE-2021-28277
JSON object : View
Products Affected
jhead_project
- jhead
CWE
CWE-787
Out-of-bounds Write