pkg:Debian/jhead
30 total CVEsCRITICAL1HIGH18MEDIUM7
✅ Check your installed version
All known vulnerabilities
- CRITICAL9.8CVE-2022-28550Matthias-Wandel/jhead jhead 3.06 is vulnerable to Buffer Overflow via shellescape(), jhead.c, jhead.from 0
- HIGH7.8CVE-2025-44906jhead v3.08 was discovered to contain a heap-use-after-free via the ProcessFile function at jhead.c.from 0
- HIGH7.8CVE-2020-28840Buffer Overflow vulnerability in jpgfile.c in Matthias-Wandel jhead version 3.04, allows local attackers to execute arbitrary code and caus…from 0
- from 0, < 1:3.04-6+deb11u1
- from 0, < 1:3.04-6+deb11u1
- from 0, < 1:3.00-8+deb10u1
- HIGH7.8CVE-2022-41751Jhead 3.06.0.1 allows attackers to execute arbitrary OS commands by placing them in a JPEG filename and then using the regeneration -rgt50…from 0, < 1:3.04-6+deb11u1
- HIGH7.8CVE-2021-28278A Heap-based Buffer Overflow vulnerability exists in jhead 3.04 and 3.05 via the RemoveSectionType function in jpgfile.c.from 0
- HIGH7.8CVE-2021-28277A Heap-based Buffer Overflow vulnerabilty exists in jhead 3.04 and 3.05 is affected by: Buffer Overflow via the RemoveUnknownSections funct…from 0
- HIGH7.8CVE-2021-3496A heap-based buffer overflow was found in jhead in version 3.06 in Get16u() in exif.c when processing a crafted file.from 0, < 1:3.04-6
- HIGH7.8CVE-2018-17088The ProcessGpsInfo function of the gpsinfo.c file of jhead 3.00 may allow a remote attacker to cause a denial-of-service attack or unspecif…from 0, < 1:3.00-8
- from 0, < 1:3.00-8
- from 0, < 1:2.97-1+deb8u2
- from 0, < 1:3.00-4
- from 0, < 1:2.95-1+deb7u1
- from 0, < 1:2.97-1+deb8u1
- HIGH7.5CVE-2021-28276A Denial of Service vulnerability exists in jhead 3.04 and 3.05 via a wild address read in the ProcessCanonMakerNoteDir function in makerno…from 0
- HIGH7.1CVE-2020-6625jhead through 3.04 has a heap-based buffer over-read in Get32s when called from ProcessGpsInfo in gpsinfo.c.from 0
- HIGH7.1CVE-2020-6624jhead through 3.04 has a heap-based buffer over-read in process_DQT in jpgqguess.c.from 0
- MEDIUM6.3CVE-2024-2824A vulnerability was found in Matthias-Wandel jhead 3.08 and classified as critical.from 0
- MEDIUM6.1CVE-2020-26208JHEAD is a simple command line tool for displaying and some manipulation of EXIF header data embedded in Jpeg images from digital cameras.from 0, < 1:3.04-6
- MEDIUM5.5CVE-2021-28275A Denial of Service vulnerability exists in jhead 3.04 and 3.05 due to a wild address read in the Get16u function in exif.c in will cause s…from 0
- from 0, < 1:3.04-1
- from 0, < 1:3.03-2
- from 0, < 1:3.03-2
- MEDIUM5.5CVE-2018-6612An integer underflow bug in the process_EXIF function of the exif.c file of jhead 3.00 raises a heap-based buffer over-read when processing…from 0, < 1:3.00-6
- —CVE-2008-4641The DoCommand function in jhead.c in Matthias Wandel jhead 2.84 and earlier allows attackers to execute arbitrary commands via shell metach…from 0, < 2.84-2
- —CVE-2008-4640The DoCommand function in jhead.c in Matthias Wandel jhead 2.84 and earlier allows local users to delete arbitrary files via vectors involv…from 0, < 2.85-1
- —CVE-2008-4639jhead.c in Matthias Wandel jhead 2.84 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file.from 0, < 2.84-1
- —CVE-2008-4575Buffer overflow in the DoCommand function in jhead before 2.84 might allow context-dependent attackers to cause a denial of service (crash)…from 0, < 2.84-1