CVE-2019-9278 log

Source
Severity Medium
Remote Yes
Type Arbitrary code execution
Description
In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media content provider with no additional execution privileges needed. User interaction is needed for exploitation.
Group Package Affected Fixed Severity Status Ticket
AVG-1166 libexif 0.6.21-1 0.6.22-1 High Testing
References
https://github.com/libexif/libexif/issues/26
https://github.com/libexif/libexif/commit/75aa73267fdb1e0ebfbc00369e7312bac43d0566