This update for exiv2-0_26 fixes the following issues: - CVE-2019-17402: Fixed improper validation of the total size to the offset and size leads to a crash in Exiv2::getULong in types.cpp . - CVE-2018-20098: Fixed a heap-based buffer over-read in Exiv2::Jp2Image::encodeJp2Header . - CVE-2018-17581: Fixed an excessive stack consumption CiffDirectory:readDirectory at crwimage_int.cpp . - CVE-2018-2 ...