Common Vulnerabilities and Exposures assigned an identifier CVE-2008-2696 to the following vulnerability: Exiv2 0.16 allows user-assisted remote attackers to cause a denial of service (divide-by-zero and application crash) via a zero value in Nikon lens information in the metadata of an image, related to "pretty printing" and the RationalValue::toLong function. Fixed upstream in: 0.17 References: http://bugzilla.gnome.org/show_bug.cgi?id=524715 http://dev.robotbattle.com/bugs/view.php?id=0000546 http://www.exiv2.org/changelog.html http://www.securityfocus.com/bid/29586 http://secunia.com/advisories/30519 http://xforce.iss.net/xforce/xfdb/42885
I'm not quite convinced this should be called security vulnerability rather than a regular bug. I only see various "client" applications in Fedora using exiv2, and their crash is rather annoyance than DoS. But maybe there are other usages of exiv2 where crash would matter. Patch in the upstream SVN: http://dev.robotbattle.com/cgi-bin/viewvc.cgi/exiv2?view=rev&revision=1399
All current Fedora / EPEL versions use exiv2 version 0.17.1 or newer.