Ubuntu Security Notice (C) 2008-2015 Canonical, Inc. / NASL script (C) 2009-2015 Tenable Network Security, Inc.
The remote Ubuntu host is missing one or more security-related patches.
Meder Kydyraliev discovered that libexif did not correctly handle
certain EXIF headers. If a user or automated system were tricked into
processing a specially crafted image, a remote attacker could cause
the application linked against libexif to crash, leading to a denial
of service, or possibly executing arbitrary code with user privileges.
Update the affected libexif-dev and / or libexif12 packages.
Risk factor :
Medium / CVSS Base Score : 6.8
CVSS Temporal Score : 5.9
Public Exploit Available : false