What is CVE-2021-34055?

CVE-2021-34055 is a vulnerability in jhead 3.06 that allows buffer overflow via exif.c in the Put16u function.

What is the severity of CVE-2021-34055?

CVE-2021-34055 has a severity score of 7.8, which is considered high.

How does CVE-2021-34055 affect jhead?

CVE-2021-34055 affects jhead 3.06, allowing buffer overflow via exif.c in the Put16u function.

Is there a fix available for CVE-2021-34055?

Yes, there are fixes available for CVE-2021-34055. Please refer to the reference links for more information and remediation steps.

Where can I find more information about CVE-2021-34055?

You can find more information about CVE-2021-34055 in the reference links provided.

Vulnerability/
CVE-2021-34055

high

7.8

CWE

119 120

4/11/2022

4/8/2024

CVE-2021-34055: Buffer Overflow

First published: Fri Nov 04 2022(Updated: )

jhead 3.06 is vulnerable to Buffer Overflow via exif.c in function Put16u.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
debian/jhead	<=1:3.00-8	1:3.00-8+deb10u1 1:3.04-6+deb11u1 1:3.06.0.1-6 1:3.08-2
debian/jhead	<=1:3.00-8<=1:3.06.0.1-4	1:3.06.0.1-5 1:3.04-6+deb11u1
Jhead Project Jhead	=3.06
Debian Debian Linux	=10.0
Debian Debian Linux	=11.0

Remedy

https://github.com/Matthias-Wandel/jhead/issues/36

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2021-34055?
CVE-2021-34055 is a vulnerability in jhead 3.06 that allows buffer overflow via exif.c in the Put16u function.
What is the severity of CVE-2021-34055?
CVE-2021-34055 has a severity score of 7.8, which is considered high.
How does CVE-2021-34055 affect jhead?
CVE-2021-34055 affects jhead 3.06, allowing buffer overflow via exif.c in the Put16u function.
Is there a fix available for CVE-2021-34055?
Yes, there are fixes available for CVE-2021-34055. Please refer to the reference links for more information and remediation steps.
Where can I find more information about CVE-2021-34055?
You can find more information about CVE-2021-34055 in the reference links provided.

collector/security-tracker-debian
collector/debian-bugs
alias/CVE-2021-34055
collector/nvd-index
agent/weakness
agent/references
agent/severity
agent/author
agent/type
agent/tags
agent/description
agent/event
agent/remedy
agent/last-modified-date
agent/softwarecombine
agent/first-publish-date
collector/mitre-cve
source/MITRE
package-manager/debian
vendor/jhead project
canonical/jhead project jhead
version/jhead project jhead/3.06
vendor/debian
canonical/debian debian linux
version/debian debian linux/10.0
version/debian debian linux/11.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.