2 matches found
openSUSE 10 Security Update : optipng (optipng-6290)
OptiPNG contained a bug in the GIF handling code that allowed to use already freed ressources. CVE-2009-0749 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...
Design/Logic Flaw
Use-after-free vulnerability in the GIFReadNextExtension function in lib/pngxtern/gif/gifread.c in OptiPNG 0.6.2 and earlier allows context-dependent attackers to cause a denial of service application crash via a crafted GIF image that causes the realloc function to return a new pointer, which...