Integer signedness error in the png_inflate function in pngrutil.c in libpng prior to 1.4.10beta01, as used in Google Chrome prior to 17.0.963.83 and other products, allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PNG file, a different vulnerability than CVE-2011-3026.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
google chrome |
||
fedoraproject fedora 17 |
||
fedoraproject fedora 16 |
||
redhat enterprise linux server aus 6.2 |
||
redhat enterprise linux 6.0 |
||
redhat enterprise linux workstation 5.0 |
||
debian debian linux 6.0 |
||
redhat enterprise linux desktop 6.0 |
||
redhat enterprise linux server eus 6.2 |
||
fedoraproject fedora 15 |
||
redhat enterprise linux 5.0 |
||
redhat enterprise linux workstation 6.0 |
||
redhat enterprise linux desktop 5.0 |
||
opensuse opensuse 12.1 |
||
redhat storage 2.0 |
||
redhat storage for public cloud 2.0 |
||
redhat gluster storage 2.0 |
||
libpng libpng |