CVE-2010-2249
MEDIUM6.5EPSS 1.6%Published: 6/30/2010Modified: 4/28/2026
Also known as:DEBIAN-CVE-2010-2249
Description
Memory leak in pngrutil.c in libpng before 1.2.44, and 1.4.x before 1.4.3, allows remote attackers to cause a denial of service (memory consumption and application crash) via a PNG image containing malformed Physical Scale (aka sCAL) chunks.
Affected packages (1)
- Debian/tuxonice-useruifrom 0, < 1.0-1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM6.5 | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H |