10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.165 Low
EPSS
Percentile
95.9%
Secunia reports:
Two vulnerabilities have been reported in SDL_image, which can be
exploited by malicious people to cause a Denial of Service or potentially
compromise an application using the library.
A boundary error within the LWZReadByte() function in IMG_gif.c can
be exploited to trigger the overflow of a static buffer via a
specially crafted GIF file.
A boundary error within the “IMG_LoadLBM_RW()” function in IMG_lbm.c
can be exploited to cause a heap-based buffer overflow via a specially
crafted IFF ILBM file.