CVE-2005-3178

EPSS 2.3%

xli - buffer overflows

Published: 10/7/2005Modified: 4/28/2026

Description

Buffer overflow in xloadimage 4.1 and earlier, and xli, might allow user-assisted attackers to execute arbitrary code via a long title name in a NIFF file, which triggers the overflow during (1) zoom, (2) reduce, or (3) rotate operations.

Affected packages (4)

Debian/xlifrom 0, < 1.17.0-20
Debian/xlifrom 0, < 1.17.0-11woody2
Debian/xloadimagefrom 0, < 4.1-15
Debian/xloadimagefrom 0, < 4.1-10woody2

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2005-3178