Heap Overflow Vulnerability in SDL2_image-2.0.3 XCF Image Rendering

Heap Overflow Vulnerability in SDL2_image-2.0.3 XCF Image Rendering

CVE-2018-3977 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

An exploitable code execution vulnerability exists in the XCF image rendering functionality of SDL2_image-2.0.3. A specially crafted XCF image can cause a heap overflow, resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability.

Learn more about our Web Application Penetration Testing UK.