A flaw was found in Exiv2 0.26. a has a heap-based buffer overflow in getData in preview.cpp. References: https://github.com/Exiv2/exiv2/issues/283 Patch: https://github.com/Exiv2/exiv2/pull/327
Created exiv2 tracking bugs for this issue: Affects: fedora-all [bug 1584862]
Statement: This issue did not affect the versions of exiv2 as shipped with Red Hat Enterprise Linux 6 and 7.