Security Advisory

CVE-2012-3425

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2012-08-13 20:00:00

Last updated 2024-08-06 20:05:12

Assigner redhat

State PUBLISHED

Description

The png_push_read_zTXt function in pngpread.c in libpng 1.0.x before 1.0.58, 1.2.x before 1.2.48, 1.4.x before 1.4.10, and 1.5.x before 1.5.10 allows remote attackers to cause a denial of service (out-of-bounds read) via a large avail_in field value in a PNG image.

← Browse all CVEs View on cve.org ↗