CVE-2019-6129

Published January 11th, 2019

View on NVD ↗

CVSS v3

6.5

MEDIUM

CVSS v2

4.3

MEDIUM

Affected

PROJECT

Description

png_create_info_struct in png.c in libpng 1.6.36 has a memory leak, as demonstrated by pngcp. NOTE: a third party has stated "I don't think it is libpng's job to free this buffer.

pnggroup/libpng

LIBPNG: Portable Network Graphics support, official libpng repository

GitHub

1.6K