Feh Project: >> Feh >> 1.12 Security Vulnerabilities
In wallpaper.c in feh before v2.18.3, if a malicious client pretends to be the E17 window manager, it is possible to trigger an out-of-boundary heap write while receiving an IPC message. An integer overflow leads to a buffer overflow and/or a double free.
CVSS Score
9.8
EPSS Score
0.007
Published
2017-04-14