MGASA-2020-0238

The updated packages fix a security vulnerability:

In exifdatasavedataentry of exif-data.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. (CVE-2020-0093)

exifentryget_value in exif-entry.c in libexif 0.6.21 has a divide-by-zero error (CVE-2020-12767).

An issue was discovered in libexif before 0.6.22. Several buffer over-reads in EXIF MakerNote handling could lead to information disclosure and crashes (CVE-2020-13112).

An issue was discovered in libexif before 0.6.22. Use of uninitialized memory in EXIF Makernote handling could lead to crashes and potential use-after-free conditions (CVE-2020-13113).

An issue was discovered in libexif before 0.6.22. An unrestricted size in handling Canon EXIF MakerNote data could lead to consumption of large amounts of compute time for decoding EXIF data (CVE-2020-13114).

The libexif package has been updated to version 0.6.22, fixing these issues and other bugs.

Also, the exif package has been updated to version 0.6.22. See the upstream NEWS files for details.