Fixed
Created: May 14, 2019
Updated: Aug 1, 2019
Resolved Date: Jun 13, 2019
Found In Version: 8.0
Fix Version: 8.0.0.31
Severity: Standard
Applicable for: Wind River Linux 8
Component/s: Userspace
A vulnerability in libpng could allow an unauthenticated, remote attacker to execute arbitrary code on a targeted system The vulnerability is due to a stack-based buffer overflow condition in the get_token function, as defined in the pnm2png.c source code file of the affected software. An attacker could exploit this vulnerability by persuading a user to process crafted data that submits malicious input to the affected software. A successful exploit could cause a stack-based buffer overflow condition, allowing the attacker to execute arbitrary code on the system.
