Back to search
CVE-2009-2295
Published: Jul 5, 2009
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple integer overflows in CamlImages 2.2 and earlier might allow context-dependent attackers to execute arbitrary code via a crafted PNG image with large width and height values that trigger a heap-based buffer overflow in the (1) read_png_file or (2) read_png_file_as_rgb24 function.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
ADV-2009-1874
vdb-entry
x_refsource_VUPEN
20090702 [oCERT-2009-009] CamlImages integer overflows
mailing-list
x_refsource_BUGTRAQ
35819
third-party-advisory
x_refsource_SECUNIA
DSA-1832
vendor-advisory
x_refsource_DEBIAN
35556
vdb-entry
x_refsource_BID
http://www.ocert.org/advisories/ocert-2009-009.html
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now