Gentoo Linux Security Advisory GLSA 200607-08 - Henning Makholm discovered that the xcf_load_vector() function is vulnerable to a buffer overflow when loading a XCF file with a large num_axes value. Versions less than 1.2.12 are affected.
58f78dd070c382aca47c1a95c60e3f359e1168297a0668ead51b3f316a9324b5