Wind River Support Network

HomeDefectsLIN8-12459
Fixed

LIN8-12459 : Security Advisory - libexif - CVE-2020-13114

Created: May 24, 2020    Updated: Jul 1, 2020
Resolved Date: Jun 23, 2020
Found In Version: 8.0.0.1
Fix Version: 8.0.0.34
Severity: Standard
Applicable for: Wind River Linux 8
Component/s: Userspace

Description

An issue was discovered in libexif before 0.6.22. An unrestricted size in handling Canon EXIF MakerNote data could lead to consumption of large amounts of compute time for decoding EXIF data.

CREATE(Triage):(User=admin) [CVE-2020-13114|https://nvd.nist.gov/vuln/detail/CVE-2020-13114]

CVEs


Live chat
Online