jhead 3.03 is affected by: Incorrect Access Control. The impact is: Denial of service. The component is: iptc.c Line 122 show_IPTC(). The attack vector is: the victim must open a specially crafted JPEG file.
bugzilla.redhat.com/show_bug.cgi?id=1679978
lists.debian.org/debian-lts-announce/2019/12/msg00037.html
lists.fedoraproject.org/archives/list/[email protected]/message/3WVQTORTGQE56XXC6OVHQCSCUGABRMQZ/
lists.fedoraproject.org/archives/list/[email protected]/message/YTGUHTJTQ6EKEPDXFSKZKVLUJC4UAPBQ/
security.gentoo.org/glsa/202007-17