Security Advisory

CVE-2017-18215

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-03-05 18:00:00

Last updated 2024-09-16 19:04:05

Assigner mitre

State PUBLISHED

Description

xvpng.c in xv 3.10a has memory corruption (out-of-bounds write) when decoding PNG comment fields, leading to crashes or potentially code execution, because it uses an incorrect length value.

← Browse all CVEs View on cve.org ↗