ALT-PU-2021-4573-1
Package imlib2 updated to version 1.7.5-alt1 for branch sisyphus_riscv64.
Closed vulnerabilities
Published: 2020-05-09
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2020-12761
modules/loaders/loader_ico.c in imlib2 1.6.0 has an integer overflow (with resultant invalid memory allocations and out-of-bounds reads) via an icon with many colors in its color map.
Severity: CRITICAL (9.1)
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
References: