4 matches found
Ubuntu: Security Advisory (USN-5988-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS : Xcftools vulnerabilities (USN-5988-1)
The remote Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5988-1 advisory. It was discovered that integer overflows vulnerabilities existed in Xcftools. An attacker could use this to cause a denial of...
USN-5988-1: Xcftools vulnerabilities
It was discovered that integer overflows vulnerabilities existed in Xcftools. An attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2019-5086, CVE-2019-5087...
CVE-2019-5086
The CVE-2019-5086 vulnerability affects xcftools 1.0.7, specifically the flattenIncrementally function in the xcf2png and xcf2pnm binaries. An integer overflow can occur while walking tiles in a specially crafted XCF file, potentially corrupting memory and allowing arbitrary code execution. Publi...