Posted on

Exiv2 0.26 basicio.cpp printIFDStructure() memory corruption

A vulnerability classified as critical has been found in Exiv2 0.26 (Image Processing Software). Affected is the function Exiv2::Image::printIFDStructure() of the file basicio.cpp. Upgrading eliminates this vulnerability. A possible mitigation has been published 12 months after the disclosure of the vulnerability.