2 matches found
CVE-2019-5086
The CVE-2019-5086 vulnerability affects xcftools 1.0.7, specifically the flattenIncrementally function in the xcf2png and xcf2pnm binaries. An integer overflow can occur while walking tiles in a specially crafted XCF file, potentially corrupting memory and allowing arbitrary code execution. Publi...
CVE-2019-5087
CVE-2019-5087 affects xcftools 1.0.7, targeting the flattenIncrementally function in the xcf2png and xcf2pnm binaries. The vulnerability is an exploitable integer overflow while computing a row allocation size, which could corrupt memory and allow arbitrary code execution when a specially crafted...