It was discovered that libpng incorrectly handled certain memory operations. If a user or automated system were tricked into opening a specially crafted PNG file, a remote attacker could use this issue to cause libpng to crash, resulting in a denial of service, or possibly execute arbitrary code.
{ "availability": "No subscription required", "binaries": [ { "binary_version": "1.6.34-1ubuntu0.18.04.2", "binary_name": "libpng-dev" }, { "binary_version": "1.6.34-1ubuntu0.18.04.2", "binary_name": "libpng-tools" }, { "binary_version": "1.6.34-1ubuntu0.18.04.2", "binary_name": "libpng-tools-dbgsym" }, { "binary_version": "1.6.34-1ubuntu0.18.04.2", "binary_name": "libpng16-16" }, { "binary_version": "1.6.34-1ubuntu0.18.04.2", "binary_name": "libpng16-16-dbgsym" }, { "binary_version": "1.6.34-1ubuntu0.18.04.2", "binary_name": "libpng16-16-udeb" } ] }