FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

PptiPNG -- Global-buffer-overflow

Affected packages
optipng < 0.7.7_1


VuXML ID fe7ac70a-792b-11ee-bf9a-a04a5edf46d9
Discovery 2023-09-30
Entry 2023-11-02

Frank-Z7 reports:

Running optipng with the "-zm 3 -zc 1 -zw 256 -snip -out" configuration options enabled raises a global-buffer-overflow bug, which could allow a remote attacker to conduct a denial-of-service attack or other unspecified effect on a crafted file.


CVE Name CVE-2023-43907