Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The png_check_keyword function in pngwutil.c in libpng before 1.0.42, and 1.2.x before 1.2.34, might allow context-dependent attackers to set the value of an arbitrary memory location to zero via vectors involving creation of crafted PNG files with keywords, related to an implicit cast of the '\0' character constant to a NULL pointer. NOTE: some sources incorrectly report this as a double free vulnerability.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
libpng 未明漏洞
Vulnerability Description
libpng 1.0.42之前的版本和1.2.34之前的1.2.x版本的pngwutil.c中的png_check_keyword函数可能允许见机行事的攻击者借助涉及创建带有关键词的特制的PNG文件的向量,来把任意内存位置的值设置成0。它与'\0'字符和空指针引用有关。
CVSS Information
N/A
Vulnerability Type
N/A