CVE-2018-3977 -- libsdl2-image-dev, libsdl-image1.2ID: oval:org.secpod.oval:def:1901928 | Date: (C)2019-05-07 (M)2023-12-20 |
Class: VULNERABILITY | Family: unix |
An exploitable code execution vulnerability exists in the XCF image rendering functionality of SDL2_image-2.0.3. A specially crafted XCF image can cause a heap overflow, resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability.
Platform: |
Ubuntu 16.04 |
Ubuntu 18.10 |
Ubuntu 14.04 |
Ubuntu 18.04 |
Product: |
libsdl2-image-dev |
libsdl-image1.2 |