Vulnerabilities (CVE)

Filtered by vendor Xv Project Subscribe
Filtered by product Xv
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2017-18215 2 Opensuse, Xv Project 2 Leap, Xv 2024-02-04 7.5 HIGH 9.8 CRITICAL
xvpng.c in xv 3.10a has memory corruption (out-of-bounds write) when decoding PNG comment fields, leading to crashes or potentially code execution, because it uses an incorrect length value.