Xcftools Project Xcftools 1.0.7

CPE Details

Xcftools Project Xcftools 1.0.7
xcftools_project
xcftools
1.0.7
2019-12-05
19h04 +00:00
2019-12-05
19h04 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:xcftools_project:xcftools:1.0.7:*:*:*:*:*:*:*

Informations

Vendor

xcftools_project

Product

xcftools

Version

1.0.7

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2019-5087 2019-11-21 14h44 +00:00 An exploitable integer overflow vulnerability exists in the flattenIncrementally function in the xcf2png and xcf2pnm binaries of xcftools 1.0.7. An integer overflow can occur while calculating the row's allocation size, that could be exploited to corrupt memory and eventually execute arbitrary code. In order to trigger this vulnerability, a victim would need to open a specially crafted XCF file.
8.8
High
CVE-2019-5086 2019-11-21 14h44 +00:00 An exploitable integer overflow vulnerability exists in the flattenIncrementally function in the xcf2png and xcf2pnm binaries of xcftools, version 1.0.7. An integer overflow can occur while walking through tiles that could be exploited to corrupt memory and execute arbitrary code. In order to trigger this vulnerability, a victim would need to open a specially crafted XCF file.
8.8
High