CVE-2022-35096
SWFTools (the affected software) contains a heap-buffer overflow in the draw_stroke path of /gfxpoly/stroke.c (CVE-2022-35096). The issue is documented across multiple sources (NVD, Red Hat, CVE lists, OSV), all describing a heap-buffer overflow via draw_stroke. The CVSS3.1 score is 5.5 (Medium),...