Name of the Vulnerable Software and Affected Versions Exiv2 version 0.27.2

Description The issue allows attackers to trigger a crash in Exiv2::getULong in types.cpp when called from Exiv2::Internal::CiffDirectory::readDirectory in crwimage int.cpp. This is due to the lack of validation of the relationship between the total size and the offset and size.

Recommendations For Exiv2 version 0.27.2, consider applying validation to the relationship between the total size and the offset and size to prevent the crash in Exiv2::getULong. As a temporary workaround, consider implementing input validation in Exiv2::Internal::CiffDirectory::readDirectory to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.