Note:
This project will be discontinued after December 13, 2021. [more]
2017-09-28
In Exiv2 0.26, there is an invalid free in the Image class in image.cpp that leads to a Segmentation fault. A crafted input will lead to a denial of service attack.
| Products | Exiv2 |
| Type | Use After Free (CWE-416) |
| First patch | - None (likely due to unavailable code) |
| Links | https://bugzilla.redhat.com/show_bug.cgi?id=1495043 |