3 matches found
CVE-2023-37644
SWFTools 0.9.2 772e55a allows attackers to trigger a large memory-allocation attempt via a crafted document, as demonstrated by pdf2swf. This occurs in pngreadchunk in lib/png.c...
CVE-2023-37644
SWFTools 0.9.2 772e55a allows attackers to trigger a large memory-allocation attempt via a crafted document, as demonstrated by pdf2swf. This occurs in pngreadchunk in lib/png.c...
CVE-2023-37644
CVE-2023-37644 affects SWFTools 0.9.2 (772e55a). The issue is in the PNG handling path: png_read_chunk in lib/png.c, where a crafted document can trigger a large memory allocation. Connected sources corroborate the same description across multiple advisories (e.g., Red Hat, Ubuntu, NVD/NVDB deriv...