Libpng-1.5.0 introduced a vulnerability in the rgb-to-gray transform function.
An attacker may cause the application to crash or execute arbitrary code as the user.
Apply an Update
Upgrade to version 1.5.1.
No information available. If you are a vendor and your product is affected, let us know.
Group | Score | Vector
Base | N/A | N/A
Temporal | N/A | N/A
Environmental | N/A | N/A
Thanks to Glenn Randers-Pehrson for reporting this vulnerability.
This document was written by Jared Allar.