Search CVE reports
1 – 2 of 2 results
Vulnerable
lib/Image/ExifTool.pm in ExifTool before 12.38 mishandles a $file =~ /\|$/ check, leading to command injection.
1 affected package
libimage-exiftool-perl
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libimage-exiftool-perl | Not affected | Needs evaluation | Vulnerable | Vulnerable |
Fixed
Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and up allows arbitrary code execution when parsing the malicious image
1 affected package
libimage-exiftool-perl
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libimage-exiftool-perl | — | Not affected | Fixed | Fixed |