pngrtran.c in libpng prior to 1.0.29 and 1.2.x prior to 1.2.21 use (1) logical instead of bitwise operations and (2) incorrect comparisons, which might allow remote malicious users to cause a denial of service (crash) via a crafted PNG image.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
libpng libpng |
||
canonical ubuntu linux 6.10 |
||
canonical ubuntu linux 6.06 |
||
canonical ubuntu linux 7.10 |
||
canonical ubuntu linux 7.04 |