1
Candidate: CVE-2016-3822
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3822
5
http://source.android.com/security/bulletin/2016-08-01.html
6
https://android.googlesource.com/platform/external/jhead/+/bae671597d47b9e5955c4cb742e468cebfd7ca6b
8
exif.c in Matthias Wandel jhead 2.87, as used in libjhead in Android 4.x
9
before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before
10
2016-08-01, allows remote attackers to execute arbitrary code or cause a
11
denial of service (out-of-bounds access) via crafted EXIF data, aka
12
internal bug 28868315.
21
upstream_jhead: released (1:3.00-4)
22
precise_jhead: ignored (reached end-of-life)
23
precise/esm_jhead: DNE (precise was needs-triage)
24
trusty_jhead: released (1:2.97-1+deb8u1build0.14.04.1)
25
vivid/stable-phone-overlay_jhead: DNE
26
vivid/ubuntu-core_jhead: DNE
27
xenial_jhead: needs-triage
28
yakkety_jhead: ignored (reached end-of-life)
29
zesty_jhead: ignored (reached end-of-life)
30
artful_jhead: needs-triage
31
bionic_jhead: needs-triage
32
devel_jhead: needs-triage