xvpng.c in xv 3.10a has memory corruption (out-of-bounds write) when decoding PNG comment fields, leading to crashes or potentially code execution, because it uses an incorrect length value.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
xv project xv 3.10a |
||
opensuse leap 42.3 |