5 matches found
Integer Overflow in png-img
An integer overflow in the PngImg::InitStorage function of png-img before 3.1.0 leads to an under-allocation of heap memory and subsequently an exploitable heap-based buffer overflow when loading a crafted PNG file...
CVE-2020-28248
An integer overflow in the PngImg::InitStorage function of png-img before 3.1.0 leads to an under-allocation of heap memory and subsequently an exploitable heap-based buffer overflow when loading a crafted PNG file...
CVE-2020-28248
An integer overflow in the PngImg::InitStorage function of png-img before 3.1.0 leads to an under-allocation of heap memory and subsequently an exploitable heap-based buffer overflow when loading a crafted PNG file...
Design/Logic Flaw
An integer overflow in the PngImg::InitStorage function of png-img before 3.1.0 leads to an under-allocation of heap memory and subsequently an exploitable heap-based buffer overflow when loading a crafted PNG file...
CVE-2020-28248
CVE-2020-28248 affects png-img up to version 3.0.x (before 3.1.0). The issue is an integer overflow in PngImg::InitStorage_() that under-allocates heap memory, leading to a heap-based buffer overflow while loading a crafted PNG. Impact is a memory corruption risk that can cause a crash or potenti...