Integer underflow in the pngcheckkeyword function in pngwutil.c in libpng 0.90 through 0.99, 1.0.x before 1.0.66, 1.1.x and 1.2.x before 1.2.56, 1.3.x and 1.4.x before 1.4.19, and 1.5.x before 1.5.26 allows remote attackers to have unspecified impact via a space character as a keyword in a PNG image, which triggers an out-of-bounds read.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "1.2.50-1ubuntu2.14.04.2", "binary_name": "libpng12-0" }, { "binary_version": "1.2.50-1ubuntu2.14.04.2", "binary_name": "libpng12-0-dbgsym" }, { "binary_version": "1.2.50-1ubuntu2.14.04.2", "binary_name": "libpng12-0-udeb" }, { "binary_version": "1.2.50-1ubuntu2.14.04.2", "binary_name": "libpng12-0-udeb-dbgsym" }, { "binary_version": "1.2.50-1ubuntu2.14.04.2", "binary_name": "libpng12-dev" }, { "binary_version": "1.2.50-1ubuntu2.14.04.2", "binary_name": "libpng3" } ] }