vulnerability
FreeBSD: VID-cff0b2e2-0716-11eb-9e5d-08002728f74c: libexif -- multiple vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:L/Au:N/C:N/I:N/A:C) | Oct 5, 2020 | Oct 6, 2020 | Dec 10, 2025 |
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:C)
Published
Oct 5, 2020
Added
Oct 6, 2020
Modified
Dec 10, 2025
Description
Release notes: Lots of fixes exposed by fuzzers like AFL, ClusterFuzz, OSSFuzz and others: CVE-2016-6328: fixed integer overflow when parsing maker notes CVE-2017-7544: fixed buffer overread CVE-2018-20030: Fix for recursion DoS CVE-2019-9278: replaced integer overflow checks the compiler could optimize away by safer constructs CVE-2020-0093: read overflow CVE-2020-12767: fixed division by zero CVE-2020-13112: Various buffer overread fixes due to integer overflows in maker notes CVE-2020-13113: Potential use of uninitialized memory CVE-2020-13114: Time consumption DoS when parsing canon array markers
Solution
freebsd-upgrade-package-libexif
References
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.