[SECURITY] Fedora 23 Update: exiv2-0.25-3.fc23

Thu Mar 3 20:28:42 UTC 2016

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2016-f802cade15
2016-03-03 16:39:46.124320
--------------------------------------------------------------------------------

Name        : exiv2
Product     : Fedora 23
Version     : 0.25
Release     : 3.fc23
URL         : http://www.exiv2.org/
Summary     : Exif and Iptc metadata manipulation library
Description :
A command line utility to access image metadata, allowing one to:
* print the Exif metadata of Jpeg images as summary info, interpreted values,
  or the plain data for each tag
* print the Iptc metadata of Jpeg images
* print the Jpeg comment of Jpeg images
* set, add and delete Exif and Iptc metadata of Jpeg images
* adjust the Exif timestamp (that's how it all started...)
* rename Exif image files according to the Exif timestamp
* extract, insert and delete Exif metadata (including thumbnails),
  Iptc metadata and Jpeg comments

--------------------------------------------------------------------------------
Update Information:

Avoid possible XML entity expansion security issue.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #888769 - exiv2: embedded copy of exempi should be compiled with BanAllEntityUsage
        https://bugzilla.redhat.com/show_bug.cgi?id=888769
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program. Use
su -c 'yum update exiv2' at the command line.
For more information, refer to "Managing Software with yum",
available at https://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------