Buffer overflow in the png_read_IDAT_data function in...
High severity
Unreviewed
Published
May 17, 2022
to the GitHub Advisory Database
•
Updated Jul 19, 2024
Description
Published by the National Vulnerability Database
Jan 18, 2015
Published to the GitHub Advisory Database
May 17, 2022
Last updated
Jul 19, 2024
Buffer overflow in the png_read_IDAT_data function in pngrutil.c in libpng before 1.5.21 and 1.6.x before 1.6.16 allows context-dependent attackers to execute arbitrary code via IDAT data with a large width, a different vulnerability than CVE-2014-9495.
References