Multiple integer overflows in glpng.c in glpng 1.45 allow context-dependent attackers to execute arbitrary code via a crafted PNG image, related to (1) the pngLoadRawF function and (2) the pngLoadF function, leading to heap-based buffer overflows.
Max CVSS
6.8
EPSS Score
0.63%
Published
2010-08-16
Updated
2018-10-10
1 vulnerabilities found