Tags: security upstream
the following vulnerability was published for exiv2, only affecting
| There is a heap-based buffer overflow in basicio.cpp of Exiv2 0.26. The
| vulnerability causes an out-of-bounds write in
| Exiv2::Image::printIFDStructure(), which may lead to remote denial of
| service or possibly unspecified other impact.
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
pkg-kde-extras mailing list