Security Advisory

CVE-2012-2841

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2012-07-13 10:00:00
Last updated 2024-08-06 19:42:32
Assigner Chrome
State PUBLISHED

Description

Integer underflow in the exif_entry_get_value function in exif-entry.c in the EXIF Tag Parsing Library (aka libexif) 0.6.20 might allow remote attackers to execute arbitrary code via vectors involving a crafted buffer-size parameter during the formatting of an EXIF tag, leading to a heap-based buffer overflow.