CVE Vulnerabilities

CVE-2010-1519

Published: Aug 16, 2010 | Modified: Oct 10, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.8 MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Multiple integer overflows in glpng.c in glpng 1.45 allow context-dependent attackers to execute arbitrary code via a crafted PNG image, related to (1) the pngLoadRawF function and (2) the pngLoadF function, leading to heap-based buffer overflows.

Affected Software

Name Vendor Start Version End Version
Glpng Glpng 1.45 1.45
Libglpng Ubuntu dapper *
Libglpng Ubuntu hardy *
Libglpng Ubuntu jaunty *
Libglpng Ubuntu karmic *
Libglpng Ubuntu lucid *
Libglpng Ubuntu maverick *
Libglpng Ubuntu natty *
Libglpng Ubuntu upstream *

References