[ALSA-2026:20929] Moderate: libexif security update
Type:
security
Severity:
moderate
Release date:
2026-05-27
Description:
The libexif packages provide a library for extracting extra information from image files. Security Fix(es): * libexif: libexif: Information disclosure and crashes via integer overflow in Nikon MakerNote handling (CVE-2026-40385) * libexif: libexif: Denial of Service and information disclosure via integer underflow in MakerNote decoding (CVE-2026-40386) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 libexif-devel-0.6.22-6.el8_10.aarch64.rpm 6b2295b1a588fcbf5016acbabbca0e08f0b7615f9aaaa6e2758acba5cdc00081
aarch64 libexif-0.6.22-6.el8_10.aarch64.rpm 74c8948be141a7adc29c5ad529cad041d7e11ed1d9e2674d2df20873e4949639
i686 libexif-devel-0.6.22-6.el8_10.i686.rpm 3679161e494aeb5d7d5e974923adc1e86302953b7f9bcdc0013aaed6654fc29c
i686 libexif-0.6.22-6.el8_10.i686.rpm 8193a069f8ff6f2f7d1a7fd12c9d0663973e6649a326f75d3fec89071853db27
ppc64le libexif-devel-0.6.22-6.el8_10.ppc64le.rpm 5cd772be9139700d1e959c05c4f9d5254fda316675e2dc1f6cf0cf5be44bbeb4
ppc64le libexif-0.6.22-6.el8_10.ppc64le.rpm e15e34290a2100fe17840345aecf01684994dfeec78c08a2ecc60d5c2f711a30
s390x libexif-0.6.22-6.el8_10.s390x.rpm 314a277e3b860ca08bc255441fc229db94cd6800c6162a4b137412b390330dc5
s390x libexif-devel-0.6.22-6.el8_10.s390x.rpm da7e616cfafd7ff7a3556ffb3ed7297daa3c2f449ca7134bd387461821e428d9
x86_64 libexif-0.6.22-6.el8_10.x86_64.rpm 1c6c5eed8be92ae1d6947132e4d649529dca94989f68ee04867b85e275eb2adc
x86_64 libexif-devel-0.6.22-6.el8_10.x86_64.rpm 978b8fa9bdeb859ed8965725d682c65008d87cf0e958ddaa51bb6c35349968cc
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.