A flaw was found in Exiv2::Internal::PngChunk::parseTXTChunk in Exiv2 v0.26 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted image file, a different vulnerability than CVE-2018-10999.
Created exiv2 tracking bugs for this issue:
Affects: fedora-all [bug 1624978]
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):