FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

optipng -- use-after-free vulnerability

Affected packages
		optipng	<=	0.6.5

Details

VuXML ID	bab05188-5d4b-11e5-9ad8-14dae9d210b8
Discovery	2015-09-16
Entry	2015-09-17
Modified	2015-10-14

Gustavo Grieco reports:

We found a use-after-free causing an invalid/double free in optipng 0.6.4.

[source]

References

CVE Name	CVE-2015-7801
URL	http://seclists.org/oss-sec/2015/q3/556

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.