An integer overflow vulnerability was found in icoutils in the wrestool program. A maliciously crafted file could make the application crash or possibly allow code execution.
Created icoutils tracking bugs for this issue:
Affects: fedora-all [bug 1411252]
Affects: epel-6 [bug 1411253]
As noted in comment 0, the patch for CVE-5208-5331 (bug 1412248) must be included to correctly address this vulnerability.
This issue has been addressed in the following products:
Red Hat Enterprise Linux 7
Via RHSA-2017:0837 https://rhn.redhat.com/errata/RHSA-2017-0837.html