PT-2026-35485 — Julia Libexif Jll

PT-2026-35485 · Julia · Libexif Jll

Published

2026-04-17

Updated

2026-04-17

CVSS v3.1

7.4

High

Vector

AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

libexif through 0.6.25 has a flaw in decoding MakerNotes. If the exif mnote data get value function gets passed in a 0 size, the passed in-buffer would be overwritten due to an integer underflow.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

JLSEC-2026-150

Affected Products

Libexif Jll

PT-2026-35485 · Julia · Libexif Jll

Related Identifiers

Affected Products

References · 3