CVE-2004-0598
The png_handle_iCCP function in libpng 1.2.5 and earlier allows remote attackers to cause a denial of service (application crash) via a certain PNG image that triggers a null dereference.
Date published : 2004-08-05
http://lists.apple.com/mhonarc/security-announce/msg00056.html