In 2001, zen-parse discovered a buffer overflow in
xloadimage’s FACES image loader. A maliciously crafted image
could cause xloadimage to execute arbitrary code. A published
exploit exists for this vulnerability.
In 2005, Rob Holland discovered that the same vulnerability
was present in xli.