On 2/10/20 1:32 PM, Chris Gorman via blfs-support wrote:
Hello All,
Just found this CVE on bugtraq. Thanks to the wonderful folks at
Debian security. I've patched my libexif, but I thought others might
want to do so as well. I am attaching the patch that fixes the
potential exploit, but you can find it at
https://github.com/libexif/libexif/commit/75aa73267fdb1e0ebfbc00369e7312bac43d0566.
Take care.
Chris
Hi Chris,
I backported the patch to 0.6.21 and added a patch to BLFS at r22652.
Thank you for reporting!
- Doug
--
http://lists.linuxfromscratch.org/listinfo/blfs-support
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page
