CVE-2007-2756

The gdPngReadData function in libgd 2.0.34 allows user-assisted attackers to cause a denial of service (CPU consumption) via a crafted PNG image with truncated data, which causes an infinite loop in the png_read_info function in libpng.

Date published : 2007-05-18

http://www.securityfocus.com/bid/24089

http://bugs.libgd.org/?do=details&task_id=86