CVE-2018-3973

Name of the Vulnerable Software and Affected Versions Canvas Draw version 5.0.0

Description The issue is related to an out of bounds write in the CAL parsing functionality. A specially crafted CAL image can cause an out of bounds write, overwriting arbitrary data. This can be triggered by delivering a PCX image, potentially leading to code execution.

Recommendations For Canvas Draw version 5.0.0, consider avoiding the use of CAL images or restricting the application's ability to process PCX images until a fix is available. As a temporary workaround, refrain from opening untrusted or specially crafted images with the application to minimize the risk of exploitation.