Description

In libpng 1.6.34, a wrong calculation of row_factor in the png_check_chunk_length function (pngrutil.c) may trigger an integer overflow and resultant divide-by-zero while processing a crafted PNG file, leading to a denial of service.

Remediation

References

CVE-2018-13785

Related Vulnerabilities

WordPress 3.7.x PHP Object Injection (3.7 - 3.7.35)

Drupal Core 9.2.x Directory Traversal (9.2.0 - 9.2.1)

Moodle Insecure Storage of Sensitive Information Vulnerability (CVE-2024-43427)

WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-6817)

MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-37251)

Severity

Medium

Classification

CVE-2018-13785 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities