CVE-2011-3464: Stack-based buffer overflow

July 22, 2012 (updated July 23, 2012)

Off-by-one error in the png_formatted_warning function in pngerror.c in libpng might allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via unspecified vectors, which trigger a stack-based buffer overflow.

References

nvd.nist.gov/vuln/detail/CVE-2011-3464

Detect and mitigate CVE-2011-3464 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →