Name of the Vulnerable Software and Affected Versions Exiv2 version 0.27

Description An issue in Exiv2 allows an attacker to cause Denial of Service or possibly have other unspecified impact by triggering infinite recursion with a crafted file. This recursion occurs at Exiv2::Image::printTiffStructure in the file image.cpp.

Recommendations For Exiv2 version 0.27, consider avoiding the use of crafted files that may trigger the infinite recursion at Exiv2::Image::printTiffStructure until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.