Several vulnerabilities have been discovered in Exiv2, a C++ library and
a command line utility to manage image metadata which could result in
denial of service or the execution of arbitrary code if a malformed
file is parsed.
For the stable distribution (buster), these problems have been fixed in
We recommend that you upgrade your exiv2 packages.