CVE-2014-9495

2015-01-10T19:59:00
ID CVE-2014-9495
Type cve
Reporter cve@mitre.org
Modified 2016-10-18T03:45:00

Description

Heap-based buffer overflow in the png_combine_row function in libpng before 1.5.21 and 1.6.x before 1.6.16, when running on 64-bit systems, might allow context-dependent attackers to execute arbitrary code via a "very wide interlaced" PNG image.