Multiple integer overflows in glpng.c in glpng 1.45 allow context-dependent attackers to execute arbitrary code via a crafted PNG image, related to (1) the pngLoadRawF function and (2) the pngLoadF function, leading to heap-based buffer overflows.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Glpng | Glpng | 1.45 (including) | 1.45 (including) |