First published: Fri Nov 18 2005(Updated: )
Off-by-one buffer overflow in pnmtopng before 2.39, when using the -alpha command line option (Alphas_Of_Color), allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PNM file with exactly 256 colors.
Credit: secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
Greg Roelofs Pnmtopng | =2.37.3 | |
Greg Roelofs Pnmtopng | =2.38 | |
Greg Roelofs Pnmtopng | =2.37.6 | |
Greg Roelofs Pnmtopng | =2.37.5 | |
Greg Roelofs Pnmtopng | =2.37.4 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.