Mandriva Linux Security Advisory 2010-179 - Multiple integer overflows in glpng.c in glpng 1.45 allow context-dependent attackers to execute arbitrary code via a crafted PNG image, related to the pngLoadF function, leading to heap-based buffer overflows. The updated packages have been patched to correct this issue.
ab573087b52478b0ba2cbb617705821a571b174e3af01062f5c796ad32476ae6
Secunia Research has discovered two vulnerabilities in glpng, which can be exploited by malicious people to compromise an application using the library. Version 1.45 is affected.
62dffe4cc0c16f226e1002bd5370546eea705a941e53ae15e5e4e6afe93e9ac5