The vulnerability in the get_token function of the pnm2png.c component from the PNG bitmap library allows an attacker to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the gettoken function in the pnm2png.c component of the PNG bitmap handling library involves buffer overflow attacks. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and cause service interruptions...

CVE-2018-17073

wernsey/bitmap before 2018-08-18 allows a NULL pointer dereference via a 4-bit image...