CVE-2013-7354

Multiple integer overflows in libpng before 1.5.14rc03 allow remote attackers to cause a denial of service (crash) via a crafted image to the (1) png_set_sPLT or (2) png_set_text_2 function, which triggers a heap-based buffer overflow.

Date published : 2014-05-06

http://www.securityfocus.com/bid/67344

http://sourceforge.net/p/libpng/bugs/199/