5.1 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
0.12 Low
EPSS
Percentile
95.3%
Multiple integer overflows in imlib2 allow user-assisted remote attackers
to cause a denial of service (crash) and possibly execute arbitrary code
via a crafted (1) ARGB (loader_argb.c), (2) PNG (loader_png.c), (3) LBM
(loader_lbm.c), (4) JPEG (loader_jpeg.c), or (5) TIFF (loader_tiff.c)
images.