CVE-2007-5266

Name of the Vulnerable Software and Affected Versions: libpng versions prior to 1.0.29 beta1 libpng versions 1.2.x prior to 1.2.21 beta1

Description: The issue is related to an off-by-one error in ICC profile chunk handling in the png set iCCP function in pngset.c. This error allows remote attackers to cause a denial of service (crash) via a crafted PNG image that prevents a name field from being NULL terminated. Multiple vulnerabilities in the libpng package can lead to disruption of protected information availability, and exploitation can be done remotely.

Recommendations: For libpng versions prior to 1.0.29 beta1, update to version 1.0.29 beta1 or later. For libpng versions 1.2.x prior to 1.2.21 beta1, update to version 1.2.21 beta1 or later. As a temporary workaround, consider restricting the use of the png set iCCP function until a patch is available.