Multiple integer overflows in libpng before 1.5.14rc03 allow remote attackers to cause a denial of service (crash) via a crafted image to the (1) png_set_sPLT or (2) png_set_text_2 function, which triggers a heap-based buffer overflow.
AV:N/AC:L/Au:N/C:N/I:N/A:P
06/05/2014
by Libpng
a year ago