CVE-2009-2294

Priority
Low
Description
Integer overflow in the Png_datainfo_callback function in Dillo 2.1 and
earlier allows remote attackers to cause a denial of service (crash) and
possibly execute arbitrary code via a PNG image with crafted (1) width or
(2) height values.
References
Package
Source: dillo (LP Ubuntu Debian)
Upstream:needs-triage
More Information

Updated: 2017-12-14 19:45:46 UTC (commit 13907)