Wind River Support Network

HomeDefectsLIN6-6865
Fixed

LIN6-6865 : Security Advisory - libpng - CVE-2014-0333

Created: Mar 2, 2014    Updated: Dec 3, 2018
Resolved Date: Apr 11, 2014
Found In Version: 6.0.0.6
Fix Version: 6.0.0.6
Severity: Standard
Applicable for: Wind River Linux 6
Component/s: Userspace

Description

The png_push_read_chunk function in pngpread.c in the progressive decoder in libpng 1.6.x through 1.6.9 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via an IDAT chunk with a length of zero.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0333

Other Downloads


Live chat
Online