| Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
|---|---|---|---|---|---|---|
| 02_exif.c | fix crash | Ludovic Rousseau <rousseau@debian.org> | no | debian | ||
| 01_gpsinfo.c | fix crash | Ludovic Rousseau <rousseau@debian.org> | no | debian | ||
| cve-2021-3496.patch | commit ca2973f4ce79279c15a09cf400648a757c1721b0 Fix another fuztest access too far beyond allocated bug |
matthias wandel <matthias@woodgears.ca> | no | 2021-04-14 | ||
| invalid-IPTC-lengths.patch | commit 33e7a3f85e4f1d2184f60926087ff226a10c307e Check for invalid lengths in iptc.c. Fixes issue 24 diff --git a/iptc.c b/iptc.c index 06fa4e3..bb3d255 100644 |
Matthias <matthias@woodgears.ca> | no | 2021-03-24 | ||
| allocate-extra.patch | commit 5186ddcf9e35a7aa0ff0539489a930434a1325f4 Just allocate 20 bytes extra at the end of a section. Otherwise, we end up with a whole lot of little checks for structures that the file says are there but are unexpectedly cut off in fuzz tests |
Matthias <matthias@woodgears.ca> | no | 2020-10-23 | ||
| fix_cve_2021_34055 | Fix CVE-2021-34055 =================================================================== |
Joachim Reichel <reichel@debian.org> | yes | debian upstream | https://github.com/Matthias-Wandel/jhead/commit/f0a884210cc46830b176f71fd61569adc8f230a7 | |
| fix_cve_2022_41751 | Fix CVE-2022-41751 https://github.com/Matthias-Wandel/jhead/commit/76d11094d17380d51a7ad53da2287c9f53a72726, https://github.com/Matthias-Wandel/jhead/commit/2a237d866581b3774ebe63d6c312e76459bd0866 https://github.com/Matthias-Wandel/jhead/issues/60, https://github.com/Matthias-Wandel/jhead/issues/65 =================================================================== |
Joachim Reichel <reichel@debian.org> | yes | debian upstream | https://github.com/Matthias-Wandel/jhead/commit/ba1da7dce9e8f3269159b57b88ff9688624426d2, |