CVE-2018-3977 -- libsdl2-image-dev, libsdl-image1.2| ID: oval:org.secpod.oval:def:1901928 | Date: (C)2019-05-07 (M)2023-12-20 |
| Class: VULNERABILITY | Family: unix |
An exploitable code execution vulnerability exists in the XCF image rendering functionality of SDL2_image-2.0.3. A specially crafted XCF image can cause a heap overflow, resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability.
| Platform: |
| Ubuntu 16.04 |
| Ubuntu 18.10 |
| Ubuntu 14.04 |
| Ubuntu 18.04 |
| Product: |
| libsdl2-image-dev |
| libsdl-image1.2 |
