CVE-2009-2295

描述

Multiple integer overflows in CamlImages 2.2 and earlier might allow context-dependent attackers to execute arbitrary code via a crafted PNG image with large width and height values that trigger a heap-based buffer overflow in the (1) read_png_file or (2) read_png_file_as_rgb24 function.

受影響套件(4)

• Debian/advifrom 0, < 1.6.0-15
• Debian/advifrom 0, < 1.6.0-12+etch2
• Debian/camlimagesfrom 0, < 1:3.0.1-2
• Debian/camlimagesfrom 0, < 2.20-8+etch1

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2009-2295