VDB

GCVE-110-MAGEIA-2018-170

GCVE-110-MAGEIA-2018-170
Advisory Published
Vulnetix · Advisory published March 19, 2018
An exploitable buffer overflow vulnerability exists in the XCF property handling functionality of SDL_image 2.0.1. A specially crafted xcf file can cause a stack-based buffer overflow resulting in potential code execution. An attacker can provide a specially crafted XCF file to trigger this vulnerability (CVE-2017-2887).

Affected Products

VendorProductVersionsPlatforms
Mageiajava-1.8.0-openjfx0 (affected), 1.8.0.191-1.b10.2.mga6 (unaffected)
Mageiamingw-SDL_image1.2.12-13.1.mga6 (unaffected), 0 (affected), 1.2.12-13.1.mga6 (unaffected), 0 (affected)
MageiaSDL_image0 (affected), 1.2.12-9.1.mga6 (unaffected), 0 (affected), 1.2.12-9.1.mga6 (unaffected)
MageiaSDL_image0 (affected), 1.2.12-8.1.mga5 (unaffected), 0 (affected), 1.2.12-8.1.mga5 (unaffected)

Browse GCVE Records

73,738 records in the GCVE database · Updated July 19, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›