[Bug 264618] graphics/p5-Image-ExifTool: Update to 12.42 - (fixes security vulnerability)

In reply to: bugzilla-noreply_a_freebsd.org: "[Bug 264618] graphics/p5-Image-ExifTool: Update to 12.42 - (fixes security vulnerability)"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Sat, 11 Jun 2022 18:24:27 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=264618

Rafael Grether <devnull@apt322.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
 Attachment #234624|                            |maintainer-approval+
              Flags|                            |

--- Comment #1 from Rafael Grether <devnull@apt322.org> ---
Created attachment 234624
  --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=234624&action=edit
vuXML-CVE-2022-23935

Added vuXML entry:
CVE-2022-23935
lib/Image/ExifTool.pm in ExifTool before 12.38 mishandles a $file =~ /\|$/
check, leading to command injection

-- 
You are receiving this mail because:
You are the assignee for the bug.