High severity7.5NVD Advisory· Published May 13, 2016· Updated Jun 17, 2026
CVE-2016-3993
CVE-2016-3993
Description
Off-by-one error in the __imlib_MergeUpdate function in lib/updates.c in imlib2 before 1.4.9 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via crafted coordinates.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5cpe:2.3:a:enlightenment:imlib2:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:enlightenment:imlib2:*:*:*:*:*:*:*:*range: <=1.4.8
- (no CPE)range: <1.4.9
- osv-coordsRange: < 1.4.2-2.20.1
Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.