Exiv2::d2Data in types.cpp in Exiv2 v0.26 allows remote malicious users to cause a denial of service (heap-based buffer overflow) via a crafted image file.
Synopsis
Moderate: exiv2 security, bug fix, and enhancement update
Type/Severity
Security Advisory: Moderate
Topic
An update for exiv2, gegl, gnome-color-manager, and libgexiv2 is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a security impact of Moder ...