CVE-2016-5637
CVE-2016-5637 affects the libbpg library (versions 0.9.5–0.9.7). The root cause is improper handling of the transquant_bypass_enable_flag in the function restore_tqb_pixels, enabling a crafted BPG image to trigger an out-of-bounds write. This can lead to remote arbitrary code execution or denial ...