Gentoo Linux Security Advisory 201006-2 – Multiple integer overflows in CamlImages might result in the remote execution of arbitrary code. Tielei Wang reported multiple integer overflows, possibly leading to heap-based buffer overflows in the (1) read_png_file() and read_png_file_as_rgb24() functions, when processing a PNG image (CVE-2009-2295) and (2) gifread.c and jpegread.c files when processing GIF or JPEG images (CVE-2009-2660). Versions less than 3.0.2 are affected.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/90152/glsa-201006-02.txt
Source: https://packetstormsecurity.com/files/90152/Gentoo-Linux-Security-Advisory-201006-2.html