CVE-2019-5087

An exploitable integer overflow vulnerability exists in the flattenIncrementally function in the xcf2png and xcf2pnm binaries of xcftools 1.0.7. An integer overflow can occur while calculating the row's allocation size, that could be exploited to corrupt memory and eventually execute arbitrary code. In order to trigger this vulnerability, a victim would need to open a specially crafted XCF file.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
8.8 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
talosCNA
8.8 HIGH
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 40%
VendorProductVersion
xcftools_projectxcftools
1.0.7
debiandebian_linux
9.0
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
xcftools
lunar
dne
kinetic
dne
jammy
dne
impish
dne
hirsute
dne
groovy
ignored
focal
Fixed 1.0.7-6ubuntu0.20.04.1
released
eoan
ignored
disco
ignored
bionic
Fixed 1.0.7-6ubuntu0.1
released
xenial
Fixed 1.0.7-5ubuntu0.1~esm1
released
trusty
dne
Common Weakness Enumeration
References
https://lists.debian.org/debian-lts-announce/2021/02/msg00014.html
https://lists.debian.org/debian-lts-announce/2021/03/msg00008.html
https://talosintelligence.com/vulnerability_reports/TALOS-2019-0879
https://www.talosintelligence.com/vulnerability_reports/TALOS-2019-0879
https://lists.debian.org/debian-lts-announce/2021/02/msg00014.html
https://lists.debian.org/debian-lts-announce/2021/03/msg00008.html
https://talosintelligence.com/vulnerability_reports/TALOS-2019-0879
https://www.talosintelligence.com/vulnerability_reports/TALOS-2019-0879