Uploaded image for project: 'Qt'
  1. Qt
  2. QTBUG-22168

Crash bug (vulnerability) in bundled libpng 1.5.4

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: P1: Critical P1: Critical
    • 4.8.0
    • 4.7.4
    • Image formats
    • None
    • e5098123c12880d922923d1117f7b82995c6b5a0

      Certain malformed PNGs cause a crash in libpng.

      The PNG Development Group explains that libpng 1.5.4 (only) introduced a divide-by-zero bug in png_handle_cHRM(), which could lead to crashes (denial of service), ref. http://www.libpng.org/pub/png/libpng.html

      This task was created as a result of comments to QTBUG-21408

        1. globe-scene-fish-bowl.png
          globe-scene-fish-bowl.png
          222 kB
        No reviews matched the request. Check your Options in the drop-down menu of this sections header.

            vgt Eirik Aavitsland
            vgt Eirik Aavitsland
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

              Created:
              Updated:
              Resolved:

                There are no open Gerrit changes