Gentoo Linux Security Advisory GLSA 200510-26 - When XLI or Xloadimage process an image, they create a new image object to contain the new image, copying the title from the old image to the newly created image. Ariel Berkman reported that the 'zoom', 'reduce', and 'rotate' functions use a fixed length buffer to contain the new title, which could be overwritten by the NIFF or XPM image processors. Versions less than 1.17.0-r2 are affected.
b71a49d12e2e301caf360a736a4a80b84b630af24974ac51e673d65ea6d8d41a
Debian Security Advisory DSA 859-1 - Ariel Berkman discovered several buffer overflows in xloadimage, which are also present in xli, a command line utility for viewing images in X11, and could be exploited via large image titles and cause the execution of arbitrary code.
6483e1a565b7283f82a983e867a8858315481daed70fb7f122df299b35814afc
Debian Security Advisory DSA 858-1 - Ariel Berkman discovered several buffer overflows in xloadimage, a graphics file viewer for X11, that can be exploited via large image titles and cause the execution of arbitrary code.
86dd12d810a5c9d31de266e6913b7ee74cb399ed562c39faaa027eafffd2a188