Name of the Vulnerable Software and Affected Versions Exiv2 version 0.26

Description A heap-based buffer overflow exists in the Exiv2::us2Data function of types.cpp. This issue can be triggered by a crafted input, leading to a denial of service attack.

Recommendations For Exiv2 version 0.26, consider applying a patch or fix to address the heap-based buffer overflow in the Exiv2::us2Data function. As a temporary workaround, restrict the use of the Exiv2::us2Data function to minimize the risk of exploitation.