CVE-2021-22204 log

Source
Severity Medium
Remote No
Type Arbitrary code execution
Description 
Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 up to 12.23 allows arbitrary code execution when parsing the malicious image.
Group Package Affected Fixed Severity Status Ticket
AVG-1869 perl-image-exiftool 12.16-1 12.25-1 Medium Fixed
References 
https://devcraft.io/2021/05/04/exiftool-arbitrary-code-execution-cve-2021-22204.html
https://hackerone.com/reports/1154542
https://github.com/exiftool/exiftool/commit/cf0f4e7dcd024ca99615bfd1102a841a25dde031#diff-fa0d652d10dbcd246e6b1df16c1e992931d3bb717a7e36157596b76bdadb3800