Date: Thu, 10 Dec 2015 22:04:02 +0800 (CST) From: xiaoqixue_1 <xiaoqixue_1@....com> To: cve-assign@...re.org Cc: oss-security@...ts.openwall.com, yuchen-tsinghua <yuchen@...l.tsinghua.edu.cn> Subject: CVE request - read underflow in libpng 1.2.55, 1.0.65, 1.4.18, and 1.5.25 (pngwutil.c) there is a underflow read in png_check_keyword in pngwutil.c in libpng-1.2.54, which is found by XiaoQixue and ChenYu. if the data of "key" is only ' ' (0x20), it will read a byte before the buffer in line 1288. it also impacts libpng 1.2.55, 1.0.65, 1.4.18, and 1.5.25 . the details as follows: https://sourceforge.net/p/libpng/bugs/244/
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Powered by Openwall GNU/*/Linux - Powered by OpenVZ