Описание
An exploitable code execution vulnerability exists in the XCF image rendering functionality of SDL2_image 2.0.4. A specially crafted XCF image can cause a heap overflow, resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needed |
| devel | released | 2.0.5+dfsg1-1 |
| disco | ignored | end of life |
| eoan | released | 2.0.5+dfsg1-1 |
| esm-apps/bionic | needed | |
| esm-apps/focal | released | 2.0.5+dfsg1-1 |
| esm-apps/jammy | released | 2.0.5+dfsg1-1 |
| esm-apps/noble | released | 2.0.5+dfsg1-1 |
| esm-apps/xenial | needed | |
| esm-infra-legacy/trusty | needs-triage |
Показывать по
6.8 Medium
CVSS2
8.8 High
CVSS3
Связанные уязвимости
An exploitable code execution vulnerability exists in the XCF image rendering functionality of SDL2_image 2.0.4. A specially crafted XCF image can cause a heap overflow, resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability.
An exploitable code execution vulnerability exists in the XCF image re ...
An exploitable code execution vulnerability exists in the XCF image rendering functionality of SDL2_image 2.0.4. A specially crafted XCF image can cause a heap overflow, resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability.
6.8 Medium
CVSS2
8.8 High
CVSS3