Skip to navigation

Bug Fix Advisory libexif bug fix update

Advisory: RHBA-2011:1472-1
Type: Bug Fix Advisory
Severity: N/A
Issued on: 2011-11-22
Last updated on: 2011-11-22
Affected Products: RHEL Desktop Workstation (v. 5 client)
Red Hat Enterprise Linux (v. 5 server)
Red Hat Enterprise Linux Desktop (v. 5 client)

Details

An updated libexif package that fixes one bug is now available for Red Hat
Enterprise Linux 5.

The libexif package provides a library for reading and extracting image metadata
from Exif image files.

This updated fixes the following bug:

* When opening an invalid or corrupt Exif file, libexif allocated huge amounts
of memory. This could cause a memory exhaustion situation and the system then
became unresponsive, which eventually resulted in a crash of the running
graphics application, such as Gimp. The libexif code has been modified to check
validity of the Exif file before it allocates the memory. Memory is now
allocated properly and graphic programs no longer crash under these
circumstances. (BZ#689614)

All users of libexif are advised to upgrade to this updated package, which fixes
this bug.


Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/kb/docs/DOC-11259

Updated packages

RHEL Desktop Workstation (v. 5 client)

IA-32:
libexif-devel-0.6.20-1.el5_7.1.i386.rpm
File outdated by:  RHSA-2012:1255
    MD5: 7fb7dff8ade0f4e73797c2f974e894e8
SHA-256: 6d1525e3ef0b0539cd6034a74dc2317fb682b4e0651357c7512809dea9bad2a8
 
x86_64:
libexif-devel-0.6.20-1.el5_7.1.i386.rpm
File outdated by:  RHSA-2012:1255
    MD5: 7fb7dff8ade0f4e73797c2f974e894e8
SHA-256: 6d1525e3ef0b0539cd6034a74dc2317fb682b4e0651357c7512809dea9bad2a8
libexif-devel-0.6.20-1.el5_7.1.x86_64.rpm
File outdated by:  RHSA-2012:1255
    MD5: ed730b07228685c62d176b9bfdea6754
SHA-256: 553b9421dc6102e8dfd2e5b03d5c3099f5b56136b03ee70ea470f74c53e0d2dc
 
Red Hat Enterprise Linux (v. 5 server)

IA-32:
libexif-0.6.20-1.el5_7.1.i386.rpm
File outdated by:  RHSA-2012:1255
    MD5: b2903019fc1522407e557419b60b54d4
SHA-256: 2be7dfa32182c9f605f45341528a043bfc3638d0398e9a805740473e413e6594
libexif-devel-0.6.20-1.el5_7.1.i386.rpm
File outdated by:  RHSA-2012:1255
    MD5: 7fb7dff8ade0f4e73797c2f974e894e8
SHA-256: 6d1525e3ef0b0539cd6034a74dc2317fb682b4e0651357c7512809dea9bad2a8
 
IA-64:
libexif-0.6.20-1.el5_7.1.ia64.rpm
File outdated by:  RHSA-2012:1255
    MD5: 05fb0ca6d59d3710b5f25e2d9972b275
SHA-256: 5864f1b8b0ac775274cd7db018ccbbdc31110201bde95266163726367f9653c1
libexif-devel-0.6.20-1.el5_7.1.ia64.rpm
File outdated by:  RHSA-2012:1255
    MD5: b1d6e0152650d20a6a23b7f5d17a956e
SHA-256: bfee3a6d8ae77f5267491e29f50e3579dffd45c75d7c316288a2a4ca9d9f6840
 
PPC:
libexif-0.6.20-1.el5_7.1.ppc.rpm
File outdated by:  RHSA-2012:1255
    MD5: 4aee0b426c828c82c1d1266946cbcc89
SHA-256: 6938f1bab7f50808e69ab12a0c1efae2744e91233817b7ee7485aeac64b40383
libexif-0.6.20-1.el5_7.1.ppc64.rpm
File outdated by:  RHSA-2012:1255
    MD5: 8cddf9fabef531651da57cad160d0c7a
SHA-256: 5b043571affe51a14065071546a5de8ca099d6291f5a6e0375dc1169dffa2b98
libexif-devel-0.6.20-1.el5_7.1.ppc.rpm
File outdated by:  RHSA-2012:1255
    MD5: e137204ebba7f5e7bd3f2bdb8662705a
SHA-256: b244921098332cff7a206990591a8fd46f1de8a2c55aeef8d0102926167c2559
libexif-devel-0.6.20-1.el5_7.1.ppc64.rpm
File outdated by:  RHSA-2012:1255
    MD5: 393f6f6ea100458a5a3dd21b88b8180b
SHA-256: d9f5d6b2a106a80a985f661598e7f723964e1634e17440993de8aa94994a87f2
 
s390x:
libexif-0.6.20-1.el5_7.1.s390.rpm
File outdated by:  RHSA-2012:1255
    MD5: 0954cbcabf28c28386eb307aabd8b9ca
SHA-256: 654f6c169849a1d7207aec46b418091fca9221ca46e47b6f95ca09aca2e62a40
libexif-0.6.20-1.el5_7.1.s390x.rpm
File outdated by:  RHSA-2012:1255
    MD5: 62cd9787932483aabff4d1a8b5b76962
SHA-256: 4f6a01384f5dd521790f24a39be33aa108062cafdc5f8a8b5c84eddf5cba88f6
libexif-devel-0.6.20-1.el5_7.1.s390.rpm
File outdated by:  RHSA-2012:1255
    MD5: 45319b70c6c20619e0b81c3d0791563e
SHA-256: a25e0b3597060e3d1dbf93b4a8ac0e82526654cc451cf4b936f510089f3b7e0d
libexif-devel-0.6.20-1.el5_7.1.s390x.rpm
File outdated by:  RHSA-2012:1255
    MD5: 8feb86be0a55da9a40fce6eb25faf4a4
SHA-256: 58892dda7924c7f7036d69e789d1a17ac71c17e9e2f7a53508df39a42490da52
 
x86_64:
libexif-0.6.20-1.el5_7.1.i386.rpm
File outdated by:  RHSA-2012:1255
    MD5: b2903019fc1522407e557419b60b54d4
SHA-256: 2be7dfa32182c9f605f45341528a043bfc3638d0398e9a805740473e413e6594
libexif-0.6.20-1.el5_7.1.x86_64.rpm
File outdated by:  RHSA-2012:1255
    MD5: 0f91e7f6d61d1d07bd9fbb3af6d27086
SHA-256: 03b9dfdf00af6142059c9b5cf4831b5210cfecac2df7acec8fd73c07da51f291
libexif-devel-0.6.20-1.el5_7.1.i386.rpm
File outdated by:  RHSA-2012:1255
    MD5: 7fb7dff8ade0f4e73797c2f974e894e8
SHA-256: 6d1525e3ef0b0539cd6034a74dc2317fb682b4e0651357c7512809dea9bad2a8
libexif-devel-0.6.20-1.el5_7.1.x86_64.rpm
File outdated by:  RHSA-2012:1255
    MD5: ed730b07228685c62d176b9bfdea6754
SHA-256: 553b9421dc6102e8dfd2e5b03d5c3099f5b56136b03ee70ea470f74c53e0d2dc
 
Red Hat Enterprise Linux Desktop (v. 5 client)

IA-32:
libexif-0.6.20-1.el5_7.1.i386.rpm
File outdated by:  RHSA-2012:1255
    MD5: b2903019fc1522407e557419b60b54d4
SHA-256: 2be7dfa32182c9f605f45341528a043bfc3638d0398e9a805740473e413e6594
 
x86_64:
libexif-0.6.20-1.el5_7.1.i386.rpm
File outdated by:  RHSA-2012:1255
    MD5: b2903019fc1522407e557419b60b54d4
SHA-256: 2be7dfa32182c9f605f45341528a043bfc3638d0398e9a805740473e413e6594
libexif-0.6.20-1.el5_7.1.x86_64.rpm
File outdated by:  RHSA-2012:1255
    MD5: 0f91e7f6d61d1d07bd9fbb3af6d27086
SHA-256: 03b9dfdf00af6142059c9b5cf4831b5210cfecac2df7acec8fd73c07da51f291
 
(The unlinked packages above are only available from the Red Hat Network)


These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/