CVE-2016-5637

The restoretqbpixels function in libbpg 0.9.5 through 0.9.7 mishandles the transquantbypassenableflag value, which allows remote attackers to execute arbitrary code or cause a denial of service out-of-bounds write via a crafted BPG image, related to a "type confusion" issue...

CVE-2016-5637

The restoretqbpixels function in libbpg 0.9.5 through 0.9.7 mishandles the transquantbypassenableflag value, which allows remote attackers to execute arbitrary code or cause a denial of service out-of-bounds write via a crafted BPG image, related to a "type confusion" issue...

CVE-2016-5637

CVE-2016-5637 affects the libbpg library (versions 0.9.5–0.9.7). The root cause is improper handling of the transquant_bypass_enable_flag in the function restore_tqb_pixels, enabling a crafted BPG image to trigger an out-of-bounds write. This can lead to remote arbitrary code execution or denial ...

libbpg contains a type confusion vulnerability that leads to out of bounds write

Overview libbpg is a library for the BPG graphics format. libbpg 0.9.5 through 0.9.7 may allow a crafted file to write out-of-bounds, which may lead to denial of service or arbitrary code execution. Description CWE-787: Out-of-bounds Write - CVE-2016-5637According to the reporter, improper checki...