CVE-2018-16554

HIGH

Jhead - Format String Vulnerability

Title source: rule

Description

The ProcessGpsInfo function of the gpsinfo.c file of jhead 3.00 may allow a remote attacker to cause a denial-of-service attack or unspecified other impact via a malicious JPEG file, because of inconsistency between float and double in a sprintf format string during TAG_GPS_ALT handling.

References (3)

[Exploit, Patch, Third Party Advisory] https://nimo-zhang.github.io/2018/09/07/bug-analysis-1/#more

[Exploit, Mailing List, Third Party Advisory] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=908176

[Mailing List] https://lists.debian.org/debian-lts-announce/2019/12/msg00037.html

Scores

CVSS v3 7.8

EPSS 0.0030

EPSS Percentile 52.8%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE

CWE-134

Status published

Products (1)

jhead_project/jhead 3.00

Published Sep 16, 2018

Tracked Since Feb 18, 2026