Format: 1.8 Date: Wed, 24 May 2023 14:17:45 +0300 Source: jhead Binary: jhead Built-For-Profiles: noudeb Architecture: arm64 Version: 1:3.06.0.1-2ubuntu0.22.10.1 Distribution: kinetic Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: George-Andrei Iosif Description: jhead - manipulate the non-image part of Exif compliant JPEG files Changes: jhead (1:3.06.0.1-2ubuntu0.22.10.1) kinetic-security; urgency=medium . * SECURITY UPDATE: heap buffer overflow while rotating an image - debian/patches/CVE-2021-34055.patch: If a read EXIF section in jpgfile.c, then discard it. - CVE-2021-34055 * SECURITY UPDATE: code execution when regenerating the Exif thumbnail - debian/patches/CVE-2022-41751.patch: Adds a check in jhead.c for dangerous characters in filenames. - CVE-2022-41751 Checksums-Sha1: 6ef5606bd8ff62c35788bc4ae9981b6d54caed90 70206 jhead-dbgsym_3.06.0.1-2ubuntu0.22.10.1_arm64.ddeb 9e066e69502f5c95cb552577ad2c44d9408ab8a6 6354 jhead_3.06.0.1-2ubuntu0.22.10.1_arm64.buildinfo 8ebbe3bef90caeaae6c60d724587deabcb87d7c3 50632 jhead_3.06.0.1-2ubuntu0.22.10.1_arm64.deb Checksums-Sha256: b61cf00e294a6a406469741dca490c5f9545f4d2444c6adf4f8723f9355503e2 70206 jhead-dbgsym_3.06.0.1-2ubuntu0.22.10.1_arm64.ddeb 4532c1ca463c6e83d308a509c4690774a2e404a51e158900dd7df00d8b2ac36d 6354 jhead_3.06.0.1-2ubuntu0.22.10.1_arm64.buildinfo fa1ad07cb45564a6f81da17c5bba8222bdc762ff75bc5b763703cad26a9813ba 50632 jhead_3.06.0.1-2ubuntu0.22.10.1_arm64.deb Files: 8b3540a6899785437a9f27176e5cb405 70206 debug optional jhead-dbgsym_3.06.0.1-2ubuntu0.22.10.1_arm64.ddeb 724da18a1b204cf9af96787ea6cfb0b9 6354 graphics optional jhead_3.06.0.1-2ubuntu0.22.10.1_arm64.buildinfo 2e3aa1eab814d6ceacffd32504fb19c4 50632 graphics optional jhead_3.06.0.1-2ubuntu0.22.10.1_arm64.deb Original-Maintainer: Joachim Reichel