Debian Libsdl3-Image vulnerabilities

CVE-2026-35444 [HIGH] CVE-2026-35444: libsdl2-image - SDL_image is a library to load images of various formats as SDL surfaces. In do_... SDL_image is a library to load images of various formats as SDL surfaces. In do_layer_surface() in src/IMG_xcf.c, pixel index values from decoded XCF tile data are used directly as colormap indices without validating them against the colormap size (cm_num). A crafted .xcf file with a small colormap and out-of-range pixel indices causes heap out-of-bounds reads