CVE-2017-18215

Name of the Vulnerable Software and Affected Versions: xv version 3.10a

Description: The issue is related to memory corruption due to an out-of-bounds write when decoding PNG comment fields. This occurs because an incorrect length value is used, leading to potential crashes or code execution.

Recommendations: For version 3.10a, at the moment, there is no information about a newer version that contains a fix for this vulnerability.