Publishing details

Published on 2021-06-10
Copied from ubuntu focal in PPA for Ubuntu Security Proposed by Paulo Flabiano Smorigo

Changelog

libimage-exiftool-perl (11.88-1ubuntu0.1) focal-security; urgency=medium

  * SECURITY UPDATE: Arbitrary code execution
    - debian/patches/CVE-2021-22204.patch: Improper neutralization of user
      data in the DjVu file format in ExifTool versions 7.44 and up allows
      arbitrary code execution when parsing the malicious image. (LP: #1925985)
      Thanks to William Bowling for the bug report on Launchpad.
      Thanks to Gregor Herrmann for backporting the patch.
      From debian release 12.16+dfsg-2.
    - CVE-2021-22204

 -- hugo buddelmeijer <email address hidden>  Wed, 09 Jun 2021 20:39:41 +0200

Available diffs

diff from 11.88-1 (in Debian) to 11.88-1ubuntu0.1 (1.5 KiB)

Builds

amd64

Built packages

libimage-exiftool-perl library and program to read and write meta information in multimedia files

Package files

libimage-exiftool-perl_11.88-1ubuntu0.1.debian.tar.xz (9.6 KiB)
libimage-exiftool-perl_11.88-1ubuntu0.1.dsc (2.3 KiB)
libimage-exiftool-perl_11.88-1ubuntu0.1_all.deb (3.2 MiB)
libimage-exiftool-perl_11.88.orig.tar.gz (4.5 MiB)