[Bug 1144316] New: VUL-1: CVE-2019-1010301: jhead: Stack buffer overflow in gpsinfo.c when running jhead
http://bugzilla.suse.com/show_bug.cgi?id=1144316 Bug ID: 1144316 Summary: VUL-1: CVE-2019-1010301: jhead: Stack buffer overflow in gpsinfo.c when running jhead Classification: openSUSE Product: openSUSE Distribution Version: Leap 15.0 Hardware: Other OS: Other Status: NEW Severity: Minor Priority: P5 - None Component: Security Assignee: sbrabec@suse.com Reporter: atoptsoglou@suse.com QA Contact: qa-bugs@suse.de Found By: --- Blocker: --- CVE-2019-1010301 jhead 3.03 is affected by: Buffer Overflow. The impact is: Denial of service. The component is: gpsinfo.c Line 151 ProcessGpsInfo(). The attack vector is: Open a specially crafted JPEG file. References https://bugzilla.redhat.com/show_bug.cgi?id=1679952 https://nvd.nist.gov/vuln/detail/CVE-2019-1010301 http://people.canonical.com/~ubuntu-security/cve/2019/CVE-2019-1010301.html -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.suse.com/show_bug.cgi?id=1144316
Swamp Workflow Management
http://bugzilla.suse.com/show_bug.cgi?id=1144316
Alexandros Toptsoglou
https://bugzilla.suse.com/show_bug.cgi?id=1144316
https://bugzilla.suse.com/show_bug.cgi?id=1144316#c1
Petr Gajdos
https://bugzilla.suse.com/show_bug.cgi?id=1144316
https://bugzilla.suse.com/show_bug.cgi?id=1144316#c2
--- Comment #2 from Petr Gajdos
https://bugzilla.suse.com/show_bug.cgi?id=1144316
https://bugzilla.suse.com/show_bug.cgi?id=1144316#c3
Petr Gajdos
https://bugzilla.suse.com/show_bug.cgi?id=1144316
https://bugzilla.suse.com/show_bug.cgi?id=1144316#c5
--- Comment #5 from Swamp Workflow Management
https://bugzilla.suse.com/show_bug.cgi?id=1144316
https://bugzilla.suse.com/show_bug.cgi?id=1144316#c6
--- Comment #6 from Swamp Workflow Management
https://bugzilla.suse.com/show_bug.cgi?id=1144316
https://bugzilla.suse.com/show_bug.cgi?id=1144316#c7
Kristyna Streitova
https://bugzilla.suse.com/show_bug.cgi?id=1144316
https://bugzilla.suse.com/show_bug.cgi?id=1144316#c8
Kristyna Streitova
participants (2)
-
bugzilla_noreply@novell.com
-
bugzilla_noreply@suse.com