CVE-2017-16794 -- swftoolsID: oval:org.secpod.oval:def:1901710 | Date: (C)2019-06-03 (M)2023-12-20 |
Class: VULNERABILITY | Family: unix |
The png_load function in lib/png.c in SWFTools 0.9.2 does not properly validate a multiplication of width and bits-per-pixel values, which allows remote attackers to cause a denial of service via a crafted file, as demonstrated by an erroneous png_load call that occurs because of incorrect integer data types in png2swf.
Platform: |
Ubuntu 16.04 |
Ubuntu 18.10 |
Ubuntu 14.04 |
Ubuntu 18.04 |