Name of the Vulnerable Software and Affected Versions Exiv2 version 0.26

Description The issue is related to an integer overflow in the PSD image reader, which can cause a denial of service due to an infinite loop when processing a crafted PSD image file. This occurs in the Exiv2::PsdImage::readMetadata function in psdimage.cpp.

Recommendations For Exiv2 version 0.26, consider avoiding the use of crafted PSD image files until a patch is available. As a temporary workaround, restricting the use of the PSD image reader may help minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.