CVE

Id
56056  
CVE No.
CVE-2012-2813  
Status
Candidate  
Description
The exif_convert_utf16_to_utf8 function in exif-entry.c in the EXIF Tag Parsing Library (aka libexif) before 0.6.21 allows remote attackers to cause a denial of service (out-of-bounds read) or possibly obtain sensitive information from process memory via crafted EXIF tags in an image.  
Phase
Assigned (20120519)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
582921 56056 CVE-2012-2813 MLIST:[libexif-devel] 20120712 libexif project security advisory July 12, 2012  View
582922 56056 CVE-2012-2813 URL:http://sourceforge.net/mailarchive/message.php?msg_id=29534027  View
582923 56056 CVE-2012-2813 DEBIAN:DSA-2559  View
582924 56056 CVE-2012-2813 URL:http://www.debian.org/security/2012/dsa-2559  View
582925 56056 CVE-2012-2813 REDHAT:RHSA-2012:1255  View
582926 56056 CVE-2012-2813 URL:http://rhn.redhat.com/errata/RHSA-2012-1255.html  View
582927 56056 CVE-2012-2813 SUSE:SUSE-SU-2012:0903  View
582928 56056 CVE-2012-2813 URL:http://lists.opensuse.org/opensuse-security-announce/2012-07/msg00015.html  View
582929 56056 CVE-2012-2813 UBUNTU:USN-1513-1  View
582930 56056 CVE-2012-2813 URL:http://www.ubuntu.com/usn/USN-1513-1  View
582931 56056 CVE-2012-2813 BID:54437  View
582932 56056 CVE-2012-2813 URL:http://www.securityfocus.com/bid/54437  View
582933 56056 CVE-2012-2813 SECUNIA:49988  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
27170 JVNDB-2012-002877 複数の製品で使用される Webkit におけるサービス運用妨害 (DoS) の脆弱性 Google Chrome には、Cascading Style Sheets (CSS) のカウンタ機能を使用するドキュメントのレイアウトに関する処理に不備があるため、解放済みメモリの使用 (Use-after-free) により、サービス運用妨害 (DoS) 状態となるなど、不特定の影響を受ける脆弱性が存在します。 CVE-2012-2818 56056 7.5 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-002877.html  View