CVE-2018-3886

Name of the Vulnerable Software and Affected Versions Computerinsel Photoline version 20.53

Description A memory corruption issue exists in the PCX-parsing functionality. Processing a specially crafted PCX image can lead to an out-of-bounds write, overwriting arbitrary data, and potentially allowing an attacker to gain code execution by delivering a malicious PCX image.

Recommendations For version 20.53, consider avoiding the use of the PCX-parsing functionality until a fix is available. As a temporary workaround, restrict the processing of PCX images from untrusted sources to minimize the risk of exploitation.