CVE-2017-7544
- Source
- https://cve.org/CVERecord?id=CVE-2017-7544
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2017-7544.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2017-7544
- Downstream
- Related
- Published
- 2017-09-21T21:29:00.400Z
- Modified
- 2026-05-18T11:38:20.963859Z
- Severity
-
- 9.1 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
libexif through 0.6.21 is vulnerable to out-of-bounds heap read vulnerability in exifdatasavedataentry function in libexif/exif-data.c caused by improper length computation of the allocated data of an ExifMnote entry which can cause denial-of-service or possibly information disclosure.
- References
Affected packages
Git / github.com/libexif/exif
Affected ranges
- Type
- GIT
- Repo
- https://github.com/libexif/exif
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affected
- Database specific
{ "source": "CPE_FIELD", "cpe": "cpe:2.3:a:libexif_project:libexif:*:*:*:*:*:*:*:*", "extracted_events": [ { "introduced": "0" }, { "last_affected": "0.6.21" } ] }
Git / github.com/libexif/libexif
Affected ranges
- Type
- GIT
- Repo
- https://github.com/libexif/libexif
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affected
- Database specific
{ "source": "CPE_FIELD", "cpe": "cpe:2.3:a:libexif_project:libexif:*:*:*:*:*:*:*:*", "extracted_events": [ { "introduced": "0" }, { "last_affected": "0.6.21" } ] }
Affected versions
Other
libexif-0_5_7-rc2
libexif-0_5_7-rc3
libexif-0_5_7-rc4
libexif-0_5_7-release
libexif-0_5_9-release
libexif-0_6_12-release
libexif-0_6_14-release
libexif-0_6_15-release
libexif-0_6_16-release
libexif-0_6_17-release
libexif-0_6_18-release
libexif-0_6_19-release
libexif-0_6_20-release
libexif-0_6_21-release
libexif-before-0_6_0-api-change