EXIF Tool problem?

Started by jonz, May 03, 2021, 01:38:09 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions

lbo

#1
May 03, 2021, 10:13:21 AM
Quote from: jonz on May 03, 2021, 01:38:09 AM
Is this a problem for us?

only if you process malicious images, i.e. from external sources, with ExifTol / IMatch.

Updating to version ExifTool-12.24 fixes the vulnerability.

Mario

#2
May 03, 2021, 02:24:15 PM
I would also guess that the risk is low, unless you download images from shady web sites where somebody may have uploaded images which target explicitly this vulnerably in ExifTool (or the PERL runtime).
I have not tested it yet (the IMatch 2020 code base rests currently), but usually there are no issues when migrating to a slightly higher ExifTool version.
I currently use the 12.23 with IMatch 2021 Alpha.
-- Mario
IMatch Developer
Forum Administrator
http://www.photools.com  -  Contact & Support - Follow me on 𝕏 - Like photools.com on Facebook

jonz

#3
May 03, 2021, 03:13:36 PM
I think I'll wait until IMatch gets updated since I deal almost exclusively with my own photos. Thank you both...
Print
Go Up Pages1
User actions