| Severity : |
Medium
|
| Published : |
2011-07-17
|
| Modified : |
2012-07-23
|
| Base Score : |
4.3
|
| Details : |
The png_format_buffer function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 allows remote attackers to cause a denial of service (application crash) via a crafted PNG image that triggers an out-of-bounds read during the copying of error-message data. NOTE: this vulnerability exists because of a CVE-2004-0421 regression. NOTE: this is called an off-by-one error by some sources.
|
| Product/Version : |
Mobilinux 5.0.24
MVL 5 Atom
Pro 5.0.24
MVL 5 OMAP3
MVL 5 OMAP3530
CGE 5.x
Mobilinux 5.x
Pro 5.0
Pro 4.x
CGE 4.x
Mobilinux 4.x
Carrier Grade CGE 6.0
|
|
CVE Vulnerabilities List CVE-2011
