5.6 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
47.3%
jhead 3.03 is affected by: heap-based buffer over-read. The impact is: Denial of service. The component is: ReadJpegSections and process_SOFn in jpgfile.c. The attack vector is: Open a specially crafted JPEG file.
bugzilla.redhat.com/show_bug.cgi?id=1765647
lists.fedoraproject.org/archives/list/[email protected]/message/GPNV43VBUCMUBRBKPJBY4DDSYLHQ2GFR/
lists.fedoraproject.org/archives/list/[email protected]/message/UOL6LCMEVOOB342EJ4TKWTPJAJPJSVWH/
security.gentoo.org/glsa/202007-17