VYPR
High severity8.8NVD Advisory· Published Apr 24, 2018· Updated Jun 17, 2026

CVE-2017-14441

CVE-2017-14441

Description

An exploitable code execution vulnerability exists in the ICO image rendering functionality of SDL2_image-2.0.2. A specially crafted ICO image can cause an integer overflow, cascading to a heap overflow resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Sdl/Sdl Imagellm-fuzzy
    Range: =2.0.2
  • Sam Lantinga and Mattias Engdegård/Simple DirectMedia Layerv5
    Range: SDL2_image 2.0.2

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.