CVE-2014-9495

2015-01-10T14:59:00
ID CVE-2014-9495
Type cve
Reporter NVD
Modified 2016-10-17T23:45:18

Description

Heap-based buffer overflow in the png_combine_row function in libpng before 1.5.21 and 1.6.x before 1.6.16, when running on 64-bit systems, might allow context-dependent attackers to execute arbitrary code via a "very wide interlaced" PNG image.