aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorsimon <simon@FreeBSD.org>2005-03-09 05:26:23 +0800
committersimon <simon@FreeBSD.org>2005-03-09 05:26:23 +0800
commitcd581bc507081fd713b54129d62f447b9044f4b0 (patch)
tree9b727ca1f8256df33bbe05d8878e75617015c910
parent1bab7c3ac38081ff49e91a7fce59cc98b29e68ef (diff)
downloadfreebsd-ports-gnome-cd581bc507081fd713b54129d62f447b9044f4b0.tar.gz
freebsd-ports-gnome-cd581bc507081fd713b54129d62f447b9044f4b0.tar.zst
freebsd-ports-gnome-cd581bc507081fd713b54129d62f447b9044f4b0.zip
Document libexif -- buffer overflow vulnerability.
Diffstat
-rw-r--r--security/vuxml/vuln.xml27
1 files changed, 27 insertions, 0 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml
index 3714da2f7b30..fbf2bb2be784 100644
--- a/security/vuxml/vuln.xml
+++ b/security/vuxml/vuln.xml
@@ -32,6 +32,33 @@ EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-->
<vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
+ <vuln vid="624fe633-9006-11d9-a22c-0001020eed82">
+ <topic>libexif -- buffer overflow vulnerability</topic>
+ <affects>
+ <package>
+ <name>libexif</name>
+ <range><lt>0.6.10_1</lt></range>
+ </package>
+ </affects>
+ <description>
+ <body xmlns="http://www.w3.org/1999/xhtml">
+ <p>Sylvain Defresne reports that libexif is vulnerable to a
+ buffer overflow vulnerability due to insufficient input
+ checking. This could lead crash of applications using
+ libexif.</p>
+ </body>
+ </description>
+ <references>
+ <bid>12744</bid>
+ <cvename>CAN-2005-0664</cvename>
+ <url>https://bugzilla.ubuntulinux.org/show_bug.cgi?id=7152</url>
+ </references>
+ <dates>
+ <discovery>2005-03-03</discovery>
+ <entry>2005-03-08</entry>
+ </dates>
+ </vuln>
+
<vuln vid="4a0b334d-8d8d-11d9-afa0-003048705d5a">
<topic>phpbb - Insuffient check against HTML code in usercp_register.php</topic>
<affects>
generated by cgit (git 2.34.1) at 2025-02-06 04:49:16 +0800