CVE-2009-0749 vulnerability in Optipngproject and Other Products
Published on March 2, 2009

Use-after-free vulnerability in the GIFReadNextExtension function in lib/pngxtern/gif/gifread.c in OptiPNG 0.6.2 and earlier allows context-dependent attackers to cause a denial of service (application crash) via a crafted GIF image that causes the realloc function to return a new pointer, which triggers memory corruption when the old pointer is accessed.

Vendor Advisory Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2009-0749

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2009-0749 are published in these products:

Optipngproject Optipng

Suse Linux Enterprise

OpenSuse

Exploit Probability

EPSS

0.41%

Percentile

60.80%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2009-0749 vulnerability in Optipngproject and Other ProductsPublished on March 2, 2009

Products Associated with CVE-2009-0749

Exploit Probability

CVE-2009-0749 vulnerability in Optipngproject and Other Products
Published on March 2, 2009