CVE-2017-16796
CVE-2017-16796 affects SWFTools 0.9.2 where the png_load function in lib/png.c does not check the return value of realloc. The root cause is a missing check on realloc, which can lead to a denial of service via an invalid write and application crash when processing a crafted PNG with an IDAT tag....