CVE-2011-3045

Priority
Description
Integer signedness error in the png_inflate function in pngrutil.c in
libpng before 1.4.10beta01, as used in Google Chrome before 17.0.963.83 and
other products, allows remote attackers to cause a denial of service
(application crash) or possibly execute arbitrary code via a crafted PNG
file, a different vulnerability than CVE-2011-3026.
Notes
 jdstrand> firefox and thunderbird 16 are not affected
Package
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):not-affected (uses system libpng)
Package
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):not-affected
Package
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):not-affected
More Information

Updated: 2019-03-19 11:59:50 UTC (commit 15472795df7e9de45b82f2d36b8b419b939f97b2)