5 matches found
Arbitrary Code Execution
xcftools is vulnerable to artbitrary code execution. The vulnerability exists through an exploitable integer overflow in the flattenIncrementally function in the xcf2png and xcf2pnm binaries of xcftools...
CVE-2019-5086
An exploitable integer overflow vulnerability exists in the flattenIncrementally function in the xcf2png and xcf2pnm binaries of xcftools, version 1.0.7. An integer overflow can occur while walking through tiles that could be exploited to corrupt memory and execute arbitrary code. In order to...
CVE-2019-5087
Removed by vendor...
PT-2019-17467 · Gimp +2 · Xcftools +2
Name of the Vulnerable Software and Affected Versions: xcftools version 1.0.7 Description: An integer overflow vulnerability exists in the flattenIncrementally function in the xcf2png and xcf2pnm binaries. This vulnerability can occur while walking through tiles and could be exploited to corrupt...
PT-2019-17468 · Gimp +2 · Xcftools +2
Name of the Vulnerable Software and Affected Versions: xcftools version 1.0.7 Description: An integer overflow vulnerability exists in the flattenIncrementally function in the xcf2png and xcf2pnm binaries. This vulnerability can occur while calculating the row's allocation size, potentially...