CVE-2017-1000229

Priority
Description
Integer overflow bug in function minitiff_read_info() of optipng 0.7.6
allows an attacker to remotely execute code or cause denial of service.
Assigned-to
mdeslaur
Notes
Package
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was released [0.6.4-1ubuntu0.14.04.2])
Ubuntu 16.04 LTS (Xenial Xerus):released (0.7.6-1ubuntu0.16.04.1)
Ubuntu 18.04 LTS (Bionic Beaver):released (0.7.6-1ubuntu1)
Patches:
Other:https://sourceforge.net/p/optipng/bugs/65/#f6bb
More Information

Updated: 2020-07-28 19:59:16 UTC (commit d26b6ca9f5b3adb89bb036ce73ae7dab894935ec)