Exiv2 through version 0.26 is vulnerable to a segmentation fault in the pngimage.cpp:tEXtToDataBuf() function. An attacker could exploit this to cause a denial of service or via crafted file. Product Bug: https://bugzilla.redhat.com/show_bug.cgi?id=1566260
Created exiv2 tracking bugs for this issue: Affects: fedora-all [bug 1594628]
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2019:2101 https://access.redhat.com/errata/RHSA-2019:2101
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2018-10772
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2020:1577 https://access.redhat.com/errata/RHSA-2020:1577