Ubuntu Security Notice (C) 2008-2013 Canonical, Inc. / NASL script (C) 2009-2013 Tenable Network Security, Inc.
The remote Ubuntu host is missing one or more security-related patches.
Meder Kydyraliev discovered that libexif did not correctly handle
certain EXIF headers. If a user or automated system were tricked into
processing a specially crafted image, a remote attacker could cause
the application linked against libexif to crash, leading to a denial
of service, or possibly executing arbitrary code with user privileges.
Update the affected libexif-dev and / or libexif12 packages.
Risk factor :
Medium / CVSS Base Score : 6.8