Upstream information

CVE-2020-6625 at MITRE

Description

jhead through 3.04 has a heap-based buffer over-read in Get32s when called from ProcessGpsInfo in gpsinfo.c.

SUSE information

Overall state of this security issue: Does not affect SUSE products

This issue is currently rated as having moderate severity.

SUSE Bugzilla entry: 1160544 [NEW]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE Package Hub for SUSE Linux Enterprise 15 SP2
  • jhead >= 3.06.0.1-bp152.4.6.1
Patchnames:
openSUSE-2021-752
openSUSE Leap 15.2
  • jhead >= 3.06.0.1-lp152.7.6.1
Patchnames:
openSUSE-2021-743