png -- DoS crash vulnerability

2007-05-15T00:00:00
ID 4CB9C513-03EF-11DC-A51D-0019B95D4F14
Type freebsd
Reporter FreeBSD
Modified 2007-05-15T00:00:00

Description

A Libpng Security Advisory reports:

A grayscale PNG image with a malformed (bad CRC) tRNS chunk will crash some libpng applications. This vulnerability could be used to crash a browser when a user tries to view such a malformed PNG file. It is not known whether the vulnerability could be exploited otherwise.