Tags: security upstream
the following vulnerability was published for exiv2, only affecting
the experimental version.
| A NULL pointer dereference was discovered in
| Exiv2::Image::printIFDStructure in image.cpp in Exiv2 0.26. The
| vulnerability causes a segmentation fault and application crash, which
| leads to denial of service.
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
pkg-kde-extras mailing list