Piponazo

**Name of the Vulnerable Software and Affected Versions** Exiv2 versions prior to 0.27.2 **Description** The issue is caused by an integer overflow in the `WebPImage::getHeaderOffset` function in `webpimage.cpp`, which can lead to a buffer overflow and a crash. This can be exploited by a remote attacker to cause a denial of service. **Recommendations** For versions prior to 0.27.2, update to version 0.27.2 or later to resolve the issue. As a temporary workaround, consider restricting the use of the `WebPImage::getHeaderOffset` function in `webpimage.cpp` until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Exiv2 version 0.26 **Description** The issue is related to the Exiv2::IptcParser::decode function in the iptc.cpp file, which may cause a denial of service due to a heap-based buffer over-read. This is caused by an integer overflow when processing a crafted PSD image file. The vulnerability can be exploited by a remote attacker to cause a denial of service. **Recommendations** For Exiv2 version 0.26, consider avoiding the use of the `Exiv2::IptcParser::decode` function when processing PSD image files until a patch is available. As a temporary workaround, restrict the processing of PSD files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Exiv2 versions 0.26 and earlier **Description** The issue is related to the incorrect handling of PNG files by the PngChunk::readRawProfile function in the Exiv2 library for managing media file metadata. This can be exploited by a remote attacker to cause a denial of service, resulting in an application crash due to a heap-based buffer over-read, via a crafted PNG file. **Recommendations** For Exiv2 versions 0.26 and earlier, update to a version later than 0.26 to resolve the issue. As a temporary workaround, consider restricting the use of the PngChunk::readRawProfile function until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Exiv2 version 0.26 **Description** The issue is related to the Exiv2::PsdImage::readMetadata function in the psdimage.cpp file of the Exiv2 library, which may cause a denial of service due to an integer overflow when processing a crafted PSD image file. This can lead to an infinite loop. The vulnerability can be exploited by a remote attacker to cause a denial of service. **Recommendations** For Exiv2 version 0.26, consider disabling the `Exiv2::PsdImage::readMetadata` function until a patch is available to prevent potential denial of service attacks. Restrict access to PSD image files to minimize the risk of exploitation.