2 matches found
CVE-2017-16794
The pngload function in lib/png.c in SWFTools 0.9.2 does not properly validate a multiplication of width and bits-per-pixel values, which allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted file, as demonstrated by an erroneous...
CVE-2017-16794
SWFTools 0.9.2 is affected by CVE-2017-16794 due to improper validation in png_load (lib/png.c). The code fails to correctly validate the multiplication of width and bits-per-pixel values, enabling a crafted file to cause a heap-based buffer over-read and application crash. The root cause is desc...