9 matches found
CVE-2009-0749
Use-after-free vulnerability in the GIFReadNextExtension function in lib/pngxtern/gif/gifread.c in OptiPNG 0.6.2 and earlier allows context-dependent attackers to cause a denial of service application crash via a crafted GIF image that causes the realloc function to return a new pointer, which...
GLSA-200903-12 : OptiPNG: User-assisted execution of arbitrary code
The remote host is affected by the vulnerability described in GLSA-200903-12 OptiPNG: User-assisted execution of arbitrary code Roy Tam reported a use-after-free vulnerability in the GIFReadNextExtension function in lib/pngxtern/gif/gifread.c leading to a memory corruption when reading a GIF imag...
CVE-2009-0749
Use-after-free vulnerability in the GIFReadNextExtension function in lib/pngxtern/gif/gifread.c in OptiPNG 0.6.2 and earlier allows context-dependent attackers to cause a denial of service application crash via a crafted GIF image that causes the realloc function to return a new pointer, which...
Design/Logic Flaw
Use-after-free vulnerability in the GIFReadNextExtension function in lib/pngxtern/gif/gifread.c in OptiPNG 0.6.2 and earlier allows context-dependent attackers to cause a denial of service application crash via a crafted GIF image that causes the realloc function to return a new pointer, which...
CVE-2009-0749
Use-after-free vulnerability in the GIFReadNextExtension function in lib/pngxtern/gif/gifread.c in OptiPNG 0.6.2 and earlier allows context-dependent attackers to cause a denial of service application crash via a crafted GIF image that causes the realloc function to return a new pointer, which...
CVE-2009-0749
OptiPNG 0.6.2 and earlier is affected by a use-after-free in GIFReadNextExtension in lib/pngxtern/gif/gifread.c, leading to memory corruption and potential denial of service when processing crafted GIFs. Multiple advisories (OpenSUSE/SUSE and Gentoo GLSA) cite CVE-2009-0749 and describe the GIF h...
CVE-2009-0749
Use-after-free vulnerability in the GIFReadNextExtension function in lib/pngxtern/gif/gifread.c in OptiPNG 0.6.2 and earlier allows context-dependent attackers to cause a denial of service application crash via a crafted GIF image that causes the realloc function to return a new pointer, which...
PT-2009-3363 · Optipng · Optipng
Name of the Vulnerable Software and Affected Versions: OptiPNG versions 0.6.2 and earlier Description: The issue is related to a use-after-free vulnerability in the GIFReadNextExtension function, which can cause memory corruption when accessing an old pointer after the realloc function returns a...
OptiPNG GIFReadNextExtension()函数释放后使用漏洞
BUGTRAQ ID: 33873 OptiPNG是PNG优化程序,可无损的将图形文件重新压缩到更小的尺寸。 OptiPNG的lib/pngxtern/gif/gifread.c文件中的GIFReadNextExtension函数存在释放后使用错误,如果用户受骗打开了特制的GIF图形就会导致拒绝服务或执行任意代码。 OptiPNG OptiPNG 0.6.2 OptiPNG OptiPNG 0.6.1 OptiPNG OptiPNG 0.6 OptiPNG OptiPNG 0.5.5 厂商补丁: OptiPNG -------...