RSS   Vulnerabilities for 'XV'   RSS

2018-03-05
 
CVE-2017-18215

CWE-787
 

 
xvpng.c in xv 3.10a has memory corruption (out-of-bounds write) when decoding PNG comment fields, leading to crashes or potentially code execution, because it uses an incorrect length value.

 


Copyright 2024, cxsecurity.com

 

Back to Top