0.6.22 release
·
210 commits
to master
since this release
This is the 0.6.22 release of libexif.
It largely contains stability, security and bugfixes.
Some EXIF 2.3 tags have been added.
It is ABI compatible to 0.6.21 release.
- New translations: ms
- Updated translations for most languages
- Fixed C89 compatibility
- Fixed warnings on recent versions of autoconf
- Some useful EXIF 2.3 tag added:
- EXIF_TAG_GAMMA
- EXIF_TAG_COMPOSITE_IMAGE
- EXIF_TAG_SOURCE_IMAGE_NUMBER_OF_COMPOSITE_IMAGE
- EXIF_TAG_SOURCE_EXPOSURE_TIMES_OF_COMPOSITE_IMAGE
- EXIF_TAG_GPS_H_POSITIONING_ERROR
- EXIF_TAG_CAMERA_OWNER_NAME
- EXIF_TAG_BODY_SERIAL_NUMBER
- EXIF_TAG_LENS_SPECIFICATION
- EXIF_TAG_LENS_MAKE
- EXIF_TAG_LENS_MODEL
- EXIF_TAG_LENS_SERIAL_NUMBER
- Lots of fixes exposed by fuzzers like AFL, ClusterFuzz, OSSFuzz and others.
- CVE-2018-20030: Fix for recursion DoS
- CVE-2020-13114: Time consumption DoS when parsing canon array markers
- CVE-2020-13113: Potential use of uninitialized memory
- CVE-2020-13112: Various buffer overread fixes due to integer overflows in maker notes
- CVE-2020-0093: read overflow
- CVE-2019-9278: replaced integer overflow checks the compiler could optimize away by safer constructs
- CVE-2020-12767: fixed division by zero
- CVE-2016-6328: fixed integer overflow when parsing maker notes
- CVE-2017-7544: fixed buffer overread