Name of the Vulnerable Software and Affected Versions Exiv2 version 0.26

Description The issue is a heap-based buffer overflow in the basicio.cpp file, which causes an out-of-bounds write in the Exiv2::Image::printIFDStructure() function. This may lead to a remote denial of service or possibly other unspecified impacts.

Recommendations For Exiv2 version 0.26, consider disabling the Exiv2::Image::printIFDStructure() function as a temporary workaround until a patch is available. Restrict access to the basicio.cpp module to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.