Vulnerabilities

CVE-2006-5793

by Fred · 17/11/2006

The sPLT chunk handling code (png_set_sPLT function in pngset.c) in libpng 1.0.6 through 1.2.12 uses a sizeof operator on the wrong data type, which allows context-dependent attackers to cause a denial of service (crash) via malformed sPLT chunks that trigger an out-of-bounds read.

Date published : 2006-11-17

http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html

http://www.securityfocus.com/bid/21078

Similar

Tags: Cybersecurity Alert