CVE-2022-3857

Name of the Vulnerable Software and Affected Versions libpng version 1.6.38

Description A flaw was found in libpng. A crafted PNG image can lead to a segmentation fault and denial of service in the png setup paeth row() function.

Recommendations For libpng version 1.6.38, consider updating to a newer version to mitigate the risk of exploitation. As a temporary workaround, consider restricting the use of crafted PNG images to minimize the risk of denial of service. However, since the provided information does not specify a fixed version, it is essential to monitor for updates from the libpng developers. At the moment, there is no information about a newer version that contains a fix for this vulnerability.