An issue was discovered in image_save_png in image/image-png.cpp in Free Lossless Image Format (FLIF) 0.3. Attackers can trigger a longjmp that leads to an uninitialized stack frame after a libpng error concerning the IHDR image width.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Flif | Flif | 0.3 (including) | 0.3 (including) |
Flif | Ubuntu | cosmic | * |