FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

PptiPNG -- Global-buffer-overflow

Affected packages
optipng < 0.7.7_1

Details

VuXML ID fe7ac70a-792b-11ee-bf9a-a04a5edf46d9
Discovery 2023-09-30
Entry 2023-11-02

Frank-Z7 reports:

Running optipng with the "-zm 3 -zc 1 -zw 256 -snip -out" configuration options enabled raises a global-buffer-overflow bug, which could allow a remote attacker to conduct a denial-of-service attack or other unspecified effect on a crafted file.

[source]

References

CVE Name CVE-2023-43907
URL https://nvd.nist.gov/vuln/detail/CVE-2023-43907

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.