CVE-2007-6351

Name of the Vulnerable Software and Affected Versions: libexif versions 0.6.16 and earlier

Description: The issue allows context-dependent attackers to cause a denial of service, possibly involving the exif loader write function in exif loader.c. Multiple vulnerabilities in the libexif package can lead to a violation of confidentiality, integrity, and availability of protected information. These vulnerabilities can be exploited remotely.

Recommendations: For libexif versions 0.6.16 and earlier, update to a version later than 0.6.16 to resolve the issue. As a temporary workaround, consider restricting the use of the exif loader write function in exif loader.c until a patch is available. Avoid using crafted EXIF tags in image files to minimize the risk of exploitation.