The vulnerability in the BmffImage::boxHandler function of the bmffimage.cpp file in the library and command-line utilities for managing image metadata in Exiv2 allows a attacker to perform a denial-of-service attack.

The vulnerability of the BmffImage::boxHandler function in the bmffimage.cpp file of the Exiv2 image metadata management command-line utility is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a remote attacker to trigger a...