When SWFTools 0.9.2 processes a crafted file in swfextract, it can lead to a NULL Pointer Dereference in the swf_FoldSprite() function in lib/rxfswf.c.
Debian Bug report logs -
#871024
swftools: CVE-2017-11100
Package:
src:swftools;
Maintainer for src:swftools is Christian Welzel <gawain@camlannde>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Sun, 6 Aug 2017 18:24:01 UTC
Severity: normal
Tags: fixed-upstream, security, upstream
Found in version sw ...