1b8bc0d8aSopenharmony_ci# Security overview 2b8bc0d8aSopenharmony_ci 3b8bc0d8aSopenharmony_ci## General 4b8bc0d8aSopenharmony_ci 5b8bc0d8aSopenharmony_cilibexif is a software library to process EXIF datablobs, which are usually 6b8bc0d8aSopenharmony_ciembedded in JPEG files. 7b8bc0d8aSopenharmony_ci 8b8bc0d8aSopenharmony_ciIt allows reading, writing, changing, and extraction (binary and textual versions) 9b8bc0d8aSopenharmony_ciof this data. 10b8bc0d8aSopenharmony_ci 11b8bc0d8aSopenharmony_ci 12b8bc0d8aSopenharmony_ci## Attack Surface 13b8bc0d8aSopenharmony_ci 14b8bc0d8aSopenharmony_ciAny data blob put into the library should be assumed untrusted and 15b8bc0d8aSopenharmony_cipotentially malicious. 16b8bc0d8aSopenharmony_ci 17b8bc0d8aSopenharmony_ciABI parameters can be considered trusted. 18b8bc0d8aSopenharmony_ci 19b8bc0d8aSopenharmony_ciThe primary attack scenario is processing of files for EXIF content 20b8bc0d8aSopenharmony_ciextraction (displaying) via unattended services, up to and including 21b8bc0d8aSopenharmony_ciwebservices where files can be uploaded by potential attackers. 22b8bc0d8aSopenharmony_ci 23b8bc0d8aSopenharmony_ci## Bugs considered security issues 24b8bc0d8aSopenharmony_ci 25b8bc0d8aSopenharmony_ci(Mostly for CVE assigments rules.) 26b8bc0d8aSopenharmony_ci 27b8bc0d8aSopenharmony_ciTriggering memory corruption of any form is considered in scope. 28b8bc0d8aSopenharmony_ciTriggering endless loops is considered in scope. (would block services) 29b8bc0d8aSopenharmony_ciTriggering unintentional aborts is considered in scope. 30b8bc0d8aSopenharmony_ci 31b8bc0d8aSopenharmony_ciCommon library usage patterns are in scope. 32b8bc0d8aSopenharmony_ci 33b8bc0d8aSopenharmony_ciCrashes during writing out of data as EXIF could be in scope. 34b8bc0d8aSopenharmony_ci 35b8bc0d8aSopenharmony_ci## Bugs not considered security issues 36b8bc0d8aSopenharmony_ci 37b8bc0d8aSopenharmony_ciCrashes caused by debugging functionality are not in scope. 38b8bc0d8aSopenharmony_ci 39b8bc0d8aSopenharmony_ci## Bugreports 40b8bc0d8aSopenharmony_ci 41b8bc0d8aSopenharmony_ciBugreports can be filed as github issues. 42b8bc0d8aSopenharmony_ci 43b8bc0d8aSopenharmony_ciIf you want to report an embargoed security bug report, reach out to dan@coneharvesters.com and marcus@jet.franken.de. 44