The vulnerability in the `png_create_info_struct` function of the PNG bitmap graphics library allows a attacker to cause a denial-of-service attack.

The vulnerability of the pngcreateinfostruct function in the library for working with PNG bitmap graphics in libpng is related to improper memory release before deleting the last reference. Exploiting this vulnerability can allow an attacker to cause service interruptions through various network...

UBUNTU-CVE-2019-6129

pngcreateinfostruct in png.c in libpng 1.6.36 has a memory leak, as demonstrated by pngcp. NOTE: a third party has stated "I don't think it is libpng's job to free this buffer...