CVE-2014-9495

Priority
Description
Heap-based buffer overflow in the png_combine_row function in libpng before
1.5.21 and 1.6.x before 1.6.16, when running on 64-bit systems, might allow
context-dependent attackers to execute arbitrary code via a "very wide
interlaced" PNG image.
Notes
 mdeslaur> only 1.5.x and 1.6.x
Package
Upstream:needs-triage
Ubuntu 14.04 LTS (Trusty Tahr):not-affected
More Information

Updated: 2019-01-14 22:14:50 UTC (commit 51f9b73af244ba86b9321e46e526586c25a8e060)