AVG-1679 log
| Package | xcftools |
| Status | Fixed |
| Severity | Medium |
| Type | arbitrary code execution |
| Affected | 1.0.7-6 |
| Fixed | 1.0.7-7 |
| Current | 1.0.7-10 [extra] |
| Ticket | FS#70042 |
| Created | Thu Mar 11 19:10:04 2021 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2019-5087 | Medium | No | Arbitrary code execution | An exploitable integer overflow vulnerability exists in the flattenIncrementally function in the xcf2png and xcf2pnm binaries of xcftools 1.0.7. An integer... |
| CVE-2019-5086 | Medium | No | Arbitrary code execution | An exploitable integer overflow vulnerability exists in the flattenIncrementally function in the xcf2png and xcf2pnm binaries of xcftools, version 1.0.7. An... |