Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Memory leak in the embedded_profile_len function in pngwutil.c in libpng before 1.2.39beta5 allows context-dependent attackers to cause a denial of service (memory leak or segmentation fault) via a JPEG image containing an iCCP chunk with a negative embedded profile length. NOTE: this is due to an incomplete fix for CVE-2006-7244.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
libpng pngwutil.c内存泄露漏洞
Vulnerability Description
libpng是一个可对PNG图形文件实现创建、读写等操作的PNG参考库。 libpng 1.2.39beta5之前版本的pngwutil.c中存在内存泄露漏洞。攻击者可借助包含iCCP数据块的JPEG图像导致拒绝服务(内存泄露或分割错误),该数据块带有负的嵌入属性长度。
CVSS Information
N/A
Vulnerability Type
N/A