Closed
Description
The attached file causes a std::bad_alloc exception in exiv2.
The bug is that there is no bounds check on the value of length at pngchunk_int.cpp:669.
Reproducible on the 0.27-maintenance branch (f4a37c6):
exiv2 issue_845_poc.png
