The vulnerability of the BmffImage::brotliUncompress() function in the Exiv2 library and command-line utilities for managing image metadata allows a hacker to execute arbitrary code.
The vulnerability of the BmffImage::brotliUncompress function in the Exiv2 library and command-line utilities for managing image metadata involves an escape from the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...