OpenBSD VuXML: Documenting security issues in the OpenBSD Ports & Packages Collection

png -- buffer overflow vulnerability on the row buffers

Affected packages
png < 1.2.5p4

Details

VuXML ID b77e53aa-cf9f-11d8-b426-00304f19272c
Discovery 2003-07-07
Entry 2004-07-07

The starting offsets for the loops are calculated incorrectly which may cause a buffer overrun beyond the beginning of the row buffer. This will allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a buffer overflow attack on the row buffers.

References

CVE Name CAN-2002-1363
URL http://www.openpkg.org/security/OpenPKG-SA-2004.030-png.html

Copyright © 2003-2005 Jacques Vidrine, Robert Nagy, and contributors.
Please see the source of this document for full copyright information.